[email protected] +603-2181 3666
All IT News eConfirm.my
IT News
Android users hit by 15,000 spam emails.
May 27, 2015 By aatech
0

BREAKING NEWS!

Ransomware is now targeting Android users. Thousands of users are at a risk of having their mobile devices and private contents locked that demands USD500 to restore access.  Users trying to unlock their devices independently will have the amount increased to USD1500.  Payment will be made via Money Pak and PayPal My Cash transfers.

The ransomware seems to have originated in Ukraine, as reported by security vendor, Bitdefender.  The malware is disguised as a fake Adobe Flash Player update.  It will download and install as an innocent Video Player. A fake error message is displayed when the user tries to run it.

As the user proceeds and click OK, a warning message purportedly from the FBI is displayed.  The message is a fake and informs users that they have broken the law by visiting pornographic websites. The message also adds screenshots of their so-called browsing history and warns the victims that they have captured screenshots of their faces and know their location.

android-ransomware-052015

This is one of the most prevalent ransomware families as new variants are created regularly.  These multiple versions of the malware are bundled with spam messages originating from different domain servers, such as .edu, .com, .org, and .net.

Once infected, the users are caught in a bind, even if the particular strain of the malware does not encrypt the file on the infected device.  The home screen button and back functionalities do not work. Turning the mobile device on or off is futile.  It does not help as the malware is loaded when the system boots.

However, if the device supports it, users can try to start it in Safe Boot.  This will load minimal Android configuration and prevent the malware from running, which can give the user time to uninstall the malware manually.

Nevertheless, one should always take preventive measures to safeguard oneself from being infected.

Recommendation

  1. Never install applications from untrusted sources.
  2. Backup – in the cloud or to an external media.
  3. Install an anti-malware solution on your Android device and keep it constantly updated.  Carry out regular scanning.
  4. Always follow best practices: avoid questionable websites, link or attachments in emails from unknown sources.
  5. Use a filter to reduce the number of spam emails from reaching your inbox.

Source

Help Net Security.