SafeUM
Home Blog Services Download Help About Recharge

Axarhöfði 14, 110 Reykjavik, Iceland

Iceland - 2015
SafeUM
Blog
Services
Download
Help
About
Recharge
Menu
Archive
TOP Security!
4 Jun 2014

First Android file-encryption was designed for Russian-speaking users

Identified by researchers from antivirus firm ESET, there is a Trojan that can encrypt files on Android devices.

The new threat is dubbed Android/Simplock. This Trojan not only encrypts your files on your Android devices, but also holds the phone hostage for a ransom.

After installing, Android/Simplocker. will scan the SD card for files with any of the following image, document or video extensions: jpeg, jpg, png, bmp, gif, pdf, doc, docx, txt, avi, mkv, 3gp, mp4 and encrypt them using AES [the Advanced Encryption Standard]

The malware will then display a ransom message in Russian asking for a payment.

Slovakia-based ESET said affected device owners were presented with a message saying that their phone was locked because they had viewed and distributed "child pornography , zoophilia and other perversions".

It goes on to instruct the victims to pay 260 hryvnias ($22, £13) via the Ukrainian MoneXy cash transfer system.

"After payment your device will be unlocked within 24 hours. In case of no PAYMENT YOU WILL LOSE ALL DATA ON your device!" it added.

The security firm said that the types of files that could be encrypted included jpeg and gif images, dox and txt text files, and mkv, avi and mp4 media.

It added that information about the infected device would also be uploaded to the server computer used by the cyber-thieves, potentially to help them ensure the right data was decrypted when a payment was received.

This server was hosted on a hidden part of the internet called Tor, Eset added, making the scam hard to trace.  "Our analysis... revealed that we are most likely dealing with a proof-of-concept or a work in progress - for example, the implementation of the encryption doesn't come close to 'the infamous Cryptolocker' on Windows," wrote security researcher Robert Lipovsky. Nevertheless, the malware is fully capable of encrypting the user's files, which may be lost if the encryption key is not retrieved.

While the malware does contain functionality to decrypt the files, ESET strongly recommend against paying up - not only because that will only motivate other malware authors to continue these kinds of filthy operations, but also because there is no guarantee that the crook will keep their part of the deal and actually decrypt them.

Android/Simplocker. is in the form of an application called ‘Sex xionix’. It was not found on the official Google Play and we estimate that its prevalence is very low at this time.

Instead ESET encourage users to protect themselves against these threats using prevention and defensive measures. For example, a mobile security app such as ESET Mobile Security for Android will keep malware off your device.

It is unknown who is behind the creation of the malware. However the use of Russian language does not surprise experts as the first SMS-Trojans on Android which appeared in 2010 was Russian and Ukrainian as well.

OUR POINT
As you know by default, Android could not be considered as safest OS on the market. Still many third-party companies are searching for the alternatives, which can help to add an extra layout of protection.  File encryption is one way to do that, but in some cases, it does not guarantee full proof protection. In SafeUM, we specifically designed our app that eliminates the all possibilities in intercepting when sending a message from one person to another. The file encryption will add an extra protection in storing your files locally. 
Tags:
Android ESET data protection
Source:
We Live Security
1837
Other NEWS
3 Jul 2020 safeum news imgage An encrypted messaging service has been infiltrated by police
4 May 2020 safeum news imgage Two-Factor Authentication ​What Is It and Why You Should Use It
12 Dec 2019 safeum news imgage Encryption is under threat - this is how it affects you
4 Nov 2019 safeum news imgage Should Big Decisions Be Based on Data or Your Intuition?
7 Jun 2018 safeum news imgage VPNFilter malware infecting 500,000 devices is worse than we thought
4 Jun 2018 safeum news imgage Hackers target Booking.com in criminal bid to steal hundreds of thousands from customers
1 Jun 2018 safeum news imgage Operator of World's Top Internet Hub Sues German Spy Agency
30 May 2018 safeum news imgage US says North Korea behind malware attacks
29 May 2018 safeum news imgage Facebook and Google targeted as first GDPR complaints filed
25 May 2018 safeum news imgage A new reason to not buy these cheap Android devices
24 May 2018 safeum news imgage Flaws in smart pet devices, apps could come back to bite owners
23 May 2018 safeum news imgage Google sued for 'clandestine tracking' of 4.4m UK iPhone users' browsing data
21 May 2018 safeum news imgage LocationSmart reportedly leaked phone location data onto the web
18 May 2018 safeum news imgage The SEC created its own scammy ICO to teach investors a lesson
17 May 2018 safeum news imgage Thieves suck millions out of Mexican banks in transfer heist
All news
SafeUM
Confidential Terms of Use Our technologies Company
Follow us
Download
SafeUM © Safe Universal Messenger

Axarhöfði 14,
110 Reykjavik, Iceland

Iceland - 2015