The Android.Lockerscreen Ransomware Prevents Recovery

The infamous Android.Lockerscreen ransomware for Android has received a major update which prevents the users from recovery.

Android.Lockscreen Fights Back

The Android.Lockscreen ransomware is one of the newest dangerous threats that feature advanced features. The malware includes a pseudorandom number generator that prevents the victims from using mechanisms to free their files. The generator creates unique six or eight digit strings with a random maths function for every infection.

The earlier versions of the threat contained hardcoded passwords, and the security researchers were able to reverse engineer the code and successfully unlock the phones. The new iteration of the ransomware now seems to amend this issue and give the victims no other options but to pay the ransom fee.

The criminals have even included additional counter measures against potential weaknesses. A new attack is included in the code which utilizes the administrative privileges of the device to change the PIN code on Android’s lock screen. The Trojan files are created directly on the mobile devices before being distributed by the criminals.

More About Android.Lockerscreen

Android.Lockscreen is the most popular name for a newly created Android ransomware that has gained notoriety in the last month. The app uses social engineering to trick inexperienced users into downloading it by posing as utility tools. Upon execution, the malicious program asks the user to grant it administrative privileges by overlaying a false patch installation window on top of an activation notice. When the victim clicks on the continue button, they grant the malware elevated rights that change the Android settings. This in turns modifies the PIN on the lockscreen.

The security researchers have identified a variant of the ransomware that displays an intimidating message that informs the victim to enter a password which can only be obtained by communicating with the perpetrators of the attack.

All Android users are advised to always update their apps to the latest versions and not to download unknown and untrusted programs from any sources other than Google Play.

Was this content helpful?

Avatar

Author : Martin Beltov

Martin graduated with a degree in Publishing from Sofia University. As a cyber security enthusiast he enjoys writing about the latest threats and mechanisms of intrusion.


Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *