Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11No anti-virus software can detect this extremely dangerous new Ransomware on Android
A new type of Ransomware on Android has just been discovered by a researcher on a blog called Zscaler. The point that makes this type of Ransomware so frightening is that no anti-virus software can detect it.
This new Ransomware was discovered inside a very popular Russian social networking application called OK . This app is completely legal and available in Google Play Store with about 100 million downloads. Also according to the above reviews, this application does not own any strange code.
What happens when this Ransomware is infected?
Unlike other Ransomware, this is a very dangerous and hard to detect type. Specifically, after you install this malicious application, it will not work immediately like most other malware types. Instead, it will hide in the system and not have any action within 4 hours. Therefore, the phone device and even the application still work normally as the victim mistook.
Four hours later, the application will require users to allow the use of device administrator rights when this permission will allow the application to change the lock screen password, screen lock, access to the lock screen and settings. A new password. Of course, if you notice, users will find that this is extremely suspicious and quickly press Cancel .
But even if you click Cancel , the application's request panel will quickly reappear and prevent users from taking any other action. If the user feels uncomfortable and agrees to grant the device administrative rights for the application, a ransom notification will appear on the screen. The attackers required to pay an amount of 500,000 rubles (about 20 million equivalent).
The researchers said: "We have done some more tests to determine whether this malware actually sent user data to a server. However, we did not find it. see any leaked personal data and also find out that this Ransomware cannot unlock the user's ".
Regardless of whether the user has transferred the requested ransom to the attacker's e-wallet, Ransomware will not stop working. As soon as the phone screen is locked, the malware will notify the Command & Control server (C & C) about the new victim. Interestingly, there is no function in this malware to confirm whether the user has paid the ransom.
How to get rid of this Ransomware type
Although no antivirus software has detected and eliminated this type of Ransomware, there is a way to help users get rid of this Ransomware. If you accidentally stick to this virus, do the following:
- Switch device to Safe Mode .
- Disconnect all third-party applications in the device.
- Remove the application and reactivate it to normal mode.
To prevent this from happening in the future, go to Security Settings / Device Administration and uncheck the Unknown Sources box.
Epilogue
It is not uncommon for smartphone users to be infected with Ransomware, since many organizations and individuals are currently focusing on developing illegal Ransomware software to extort and steal user information. So be careful when downloading applications of unknown origin on the Internet.
Refer:
- Theory - What is Ransomware?
- List of the 3 most dangerous and scary Ransomware viruses
- If you don't want to be a victim of Ransomware, read this article
Kareem WintersYou should read it
- [Infographic] 7 effective ways to protect businesses from Ransomware
- How to remove Moba ransomware from the operating system
- Learn about Ransomware: 6 ransomware on computers
- PureLocker - a very 'weird' ransomware strain that can encrypt servers
- Ransomware can encrypt cloud data
- Ako ransomware is raging all over the world, what do you know about this ransomware?
- General guidelines for decoding ransomware
- What is Ransomware Task Force (RTF)?
May be interested
- What is the Wannacry Ransomware? How to prevent Wanna Cry Ransomware?
what is ransomware wannacry, how dangerous is it and how to prevent it, please follow the following article. - Top best antivirus application for Android phonesthe best anti-virus software for android, which helps android phones and tablets get rid of viruses, malicious codes fastest. below, we will provide you with the best antivirus software for android devices, the latest update earlier this year.
- How to use Trend Micro RansomBuster blocks ransomwaretrendmicro ransom buster is ransomware blocking software on your computer, detecting dangerous files that infiltrate your computer.
- How to remove Moba ransomware from the operating systemmoba is a malware, belonging to the djvu ransomware family. these malware-infected systems are encrypted data and receive a ransom request to obtain decryption tools / software.
- Summary of effective Anti-Ransomware softwarebefore the attack of malicious code wannacry or eternalrocks, ... to the computer system, installing some anti-ransomware software is essential.
- Can anti-virus software detect and remove all malware?if you are worried about your digital security, chances are you have some kind of antivirus program installed on your device.
- 7 kinds of ransomware you didn't expectmost people know the process of making a ransomware, which is why ransomware creators are always looking to find and create new ransomware to make you pay. here are some new ransomware you should know.
- What is Ransomware CryptoWall 4.0? How to clean up Ransomware CryptoWall 4.0?cryptowall 4.0 is a form of ransomware that encrypts files, this ransomware encrypts the personal documents it finds on the victim's computer using the rsa-2048 key (256-bit aes cbc encryption algorithm). ). it will then display a message saying that to decrypt the data you need to pay a sum of money.
- How to detect malicious apps on Androidinstalling applications outside of google play is often potentially risky, making users more likely to steal personal data and money. therefore, the detection of malicious applications on android phones will help you distinguish what will be a safe application, where the application contains malicious code, thereby minimizing the download of dangerous applications. security and protection of android devices become safer.
- Theory - Ransomware part 2in the previous section of the article, tipsmake.com introduced you to some basic information about ransomware, cryptolocker ... as well as how to operate, tap money of these fake software, spies. and this time, we will continue to dive into ransomware as well as variants and relatives in the vast cryptolocker family.
Attack the network
- It took three years for Google to discover this dangerous Spyware on Android
- You will have to play the game if you want to get rid of this new Ransomware
- The new threat in Linux operating system can have 'incalculable' consequences.
- Download and sell Windows patches for all versions to avoid being hit by a massive cyber attack, affecting 150 countries and still spreading
- The more dangerous WannaCry version 2.0 has appeared
- How to handle the emergency WannaCry malicious code from the National Information Security Department
It took three years for Google to discover this dangerous Spyware on Android
You will have to play the game if you want to get rid of this new Ransomware
The new threat in Linux operating system can have 'incalculable' consequences.
Download and sell Windows patches for all versions to avoid being hit by a massive cyber attack, affecting 150 countries and still spreading
The more dangerous WannaCry version 2.0 has appeared
How to handle the emergency WannaCry malicious code from the National Information Security Department