Microsoft: ransomware attention for Android is activated with the home button

A new strain of mobile ransomware is abusing the "incoming call" notification mechanisms and the "Home" button to lock screens on Android devices.

Under the name AndroidOS / MalLocker.B, ransomware is hidden in Android applications that are offered for download from online forums and third party websites.Ransomware

Like most ransomware for Android, MalLocker.B does not actually encrypt the victim's files, but prevents access to the rest of the phone.

Once installed, ransomware takes over the phone screen and prevents the user from leaving the screen that displays the ransom note. The note is designed to look like a message from local law enforcement and tells users that they have committed a crime and must pay a fine.

The ransomware uses a two-part mechanism to display the ransom note.

The first part abuses the "incoming call" alert. This is the feature that is enabled for incoming calls displays details from the caller and MalLocker. Uses it to display a window that covers the entire area of ​​the screen with details about the incoming call.

  Microsoft Project xCloud in a while and on the web

The second part abuses the "onUserLeaveHint ()" function. This feature is used when users want to push an application into the background to switch to a new application. Activated when you press the Home or Recents buttons. MalLocker.B abuses this feature to reset the ransom note and prevent the user from changing screen or opening another application.

Read above

Registration in iGuRu.gr via email

Your email for sending each new post

Follow us on Google News iGuRu.gr at Google news

Leave a reply

Your email address Will not be published.

7 + 1 =  

Previous Story

astsu | Easily scan networks

Next Story

spyse | Discover hidden subdomains