Android ransomware posing as porn app | Mac Virus

Posted by: David Harley | January 29, 2016

Android ransomware posing as porn app

[Originally blogged for AVIEN, where I maintain a ransomware information resource page, but of relevance here too since I often write here about Android.]

Martin Zhang blogs for Symantec about the Android ransomware the company calls Android.Lockdroid.E here: Android ransomware variant uses clickjacking to become device administrator

The malware passes itself off as a porn app. It encrypts files, but if it succeeds in gaining access rights, it also has the ability to lock the device, change the PIN, and delete data via a factory reset.

The clickjacking technique it uses apparently works with versions of Android prior to version 5.0. Unfortunately, that may include up to 67% of Android devices.

Commentary by Pierluigi Paganini here.

Advertisements

Posted in Android | Tags: AVIEN, ransomware, Symantec

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

You are commenting using your Google+ account. ( Log Out / Change )

Connecting to %s

Categories

Recent Tweets

Lawrence Abrams et al on Reyptson ransomware: avien.net/blog/reyptson-… 2 days ago
More about OSX/Dok: macviruscom.wordpress.com/2017/07/17/mor… 2 days ago
Technology versus phone scammers: avien.net/blog/technolog… 1 week ago
@jleyden Questions to be asked, but Digital Health dealt with it pretty well. Hope that fact survives the politicking and recrimination. 2 weeks ago
@jleyden OK. Cheers. 2 weeks ago

%d bloggers like this: