• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Watch Out — Microsoft Warns Android Users About A New

Watch Out — Microsoft Warns Android Users About A New Ransomware

You are here: Home / General Cyber Security News / Watch Out — Microsoft Warns Android Users About A New Ransomware
October 12, 2020

Microsoft has warned about a new strain of cellular ransomware that can take advantage of incoming phone notifications and Android’s Dwelling button to lock the unit driving a ransom be aware.

The conclusions concern a variant of a identified Android ransomware family dubbed “MalLocker.B” which has now resurfaced with new methods, including a novel means to supply the ransom desire on contaminated devices as nicely as an obfuscation system to evade security methods.

The progress will come amid a massive surge in ransomware attacks from critical infrastructure across sectors, with a 50% improve in the every day ordinary of ransomware attacks in the previous a few months compared to the initially 50 % of the year, and cybercriminals progressively incorporating double extortion in their playbook.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


MalLocker has been recognized for currently being hosted on destructive sites and circulated on on the internet community forums employing numerous social engineering lures by masquerading as well-liked apps, cracked online games, or video players.

Earlier occasions of Android ransomware have exploited Android accessibility characteristics or authorization termed “Program_Warn_WINDOW” to exhibit a persistent window atop all other screens to display the ransom notice, which typically masquerade as phony police notices or alerts about purportedly locating explicit pictures on the gadget.

But just as anti-malware software commenced detecting this behavior, the new Android ransomware variant has advanced its technique to defeat this barrier. What is actually altered with MalLocker.B is the process by which it achieves the exact same aim by using an totally new tactic.

android ransomware code

To do so, it leverages the “contact” notification which is used to notify the user about incoming calls in get to screen a window that handles the total place of the display, and subsequently brings together it with a Residence or Recents keypress to set off the ransom be aware to the foreground and protect against the victim from switching to any other screen.

“This results in a chain of occasions that triggers the computerized pop-up of the ransomware monitor with no carrying out infinite redraw or posing as a method window,” Microsoft reported.

Aside from incrementally constructing on an array of aforementioned strategies to clearly show the ransomware display, the firm also famous the presence of a nevertheless-to-be-integrated device mastering design that could be utilized to healthy the ransom notice impression inside of the display with out distortion, hinting at the up coming phase evolution of the malware.

On top of that, in an try to mask its correct function, the ransomware code is closely obfuscated and designed unreadable via name mangling and deliberate use of meaningless variable names and junk code to thwart examination, the business stated.

“This new cellular ransomware variant is an essential discovery since the malware displays behaviors that have not been seen before and could open up doors for other malware to observe,” Microsoft 365 Defender Exploration Group claimed.

“It reinforces the need for complete defense driven by wide visibility into attack surfaces as properly as area professionals who keep track of the threat landscape and uncover noteworthy threats that may be hiding amidst enormous risk data and signals.”

Found this posting appealing? Adhere to THN on Facebook, Twitter  and LinkedIn to read through extra special material we publish.


Some pieces of this write-up are sourced from:
thehackernews.com

Previous Post: «Facebook Starts ‘hacker Plus’ Loyalty Program For Bug Bounties Facebook starts ‘Hacker Plus’ loyalty program for bug bounties
Next Post: Software AG Hit by Data-Stealing Ransomware Attack Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Critical ‘Pantsdown’ BMC Vulnerability Affects QCT Servers Used in Data Centers
  • 18 Oil and Gas Companies Take Cyber Resilience Pledge
  • Linux-based Cheerscrypt ransomware found targeting VMware ESXi servers
  • Experts Warn of Rise in ChromeLoader Malware Hijacking Users’ Browsers
  • The Added Dangers Privileged Accounts Pose to Your Active Directory
  • Hackers Increasingly Using Browser Automation Frameworks for Malicious Activities
  • DuckDuckGo CEO defends platform after Microsoft online tracker agreement uncovered
  • Multi-Continental Operation Leads to Arrest of Cybercrime Gang Leader
  • Cybergang Claims REvil is Back, Executes DDoS Attacks
  • Three-quarters of Security Pros Believe Current Cybersecurity Strategies Will Shortly Be Obsolete

Copyright © TheCyberSecurity.News, All Rights Reserved.