123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> Technology,-Gadget-and-Science >> View Article

New Ransomware Encrypts Your Android And Then Changes Pin Lock

Profile Picture
By Author: Wisemonkeys
Total Articles: 277
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

Security researchers from ESET have discovered a new Android ransomware that not just encrypts users’ data, but also locks them out of their devices by changing lock screen PIN. DoubleLocker is the first-ever ransomware to misuse Android accessibility — a feature that provides users alternative ways to interact with their smartphone devices, and mainly misused by Android banking Trojans to steal banking credentials.
“Given its banking malware roots, DoubleLocker may well be turned into what could be called ransom-bankers,” said Lukáš Štefanko, the malware researcher at ESET.

“Two-stage malware that first tries to wipe your bank or PayPal account and subsequently locks your device and data to request a ransom.”

The DoubleLocker hack is a threat to any Android device; it’s particularly worrying since it doesn’t require a “rooted” phone that gives extra access for the hacker to run its own code, but the effect is severe — locking the user completely out of their own device.
The ransomware is distributed through fake Adobe Flash Player downloads shared on compromised websites and ...
... it installs itself once you give it accessibility access through the “Google Play Service.” After obtaining this accessibility permission, the malware abuses it to gain device’s administrator rights and sets itself as a default home application (the launcher) — all without the user’s knowledge.
“Setting itself as a default home app — a launcher — is a trick that improves the malware’s persistence,” explains Štefanko.

“Whenever the user clicks on the home button, the ransomware gets activated, and the device gets locked again. Thanks to using the accessibility service, the user does not know that they launch malware by hitting Home.”

Once executed, DoubleLocker first changes the device PIN to a random value that neither attacker knows nor stored anywhere and meanwhile the malware encrypts all the files using AES encryption algorithm. You’ll know your files are infected if you see a “.cryeye” extension at the end of the file.

DoubleLocker ransomware demands 0.0130 BTC (approximately ₹ 4828.68 /- at time of writing) and threatens victims to pay the ransom within 24 hours.
If the ransom is paid, the attacker provides the decryption key to unlock the files and remotely resets the PIN to unlock the victim’s device.
How To Protect Yourself From DoubleLocker Ransomware
According to the researchers, so far there is no way to unlock encrypted files, though, for non-rooted devices, users can factory-reset their phone to unlock the phone and get rid of the DoubleLocker ransomware. However, for rooted Android devices with debugging mode enabled, victims can use Android Debug Bridge (ADB) tool to reset PIN without formatting their phones. The best way to protect yourself from avoiding falling victims to such ransomware attacks is to always download apps from trusted sources, like Google play Store, and stick to verified developers. Also, never click on links provided in SMS or emails. Even if the email looks legit, go directly to the website of origin and verify any possible updates. Moreover, most importantly, keep a good antivirus app on your smartphone that can detect and block such malware before it can infect your device, and always keep it and other apps up-to-date.
Found it Interesting? Got Something to ask?? Feel free to comment it below. Stay Secure ! Stay Happy !! For more CyberSec Blogs :- CLICK HERE

It is said that “Knowledge is Power” and Wisemonkeys(https://wisemonkeys.info/) is the ideal platform to prove this right where this blog was posted. Additionally, when knowledge is free it should be shared. Therefore, keeping this in mind Wisemonkeys an LMS platform is developed so that people can exchange their ideas, knowledge and experiences for the wise Gen z.

SIGN UP(https://me.wisemonkeys.info/login) TODAY and upgrade your knowledge base.

Total Views: 186Word Count: 603See All articles From Author

Add Comment

Technology, Gadget and Science Articles

1. The Benefits Of Outsourcing To Architectural Rendering Companies
Author: Vizent

2. Custom Gpt Development: A Reverse Engineering Approach To Success
Author: Sonu Kumar

3. Best Drone Camera Price In Dubai
Author: Rohit

4. Upgrade Your Charging Game: Shield's 200w & 165w Gan Chargers Now Available On Flipkart & Amazon
Author: Tiitan

5. Call Planning In Pharma: Strategies For Boosting Sales Success
Author: Jesvira

6. Why Ios App Development Services Are Essential For Your Business
Author: Perfectiongeeks

7. Enterprise Web Applications Drive Innovation In Mobile Application Development
Author: Khurath

8. Reducerea Cheltuielilor și Creșterea Performanței Prin Închirierea Unui Copiator Color
Author: CopyService Total

9. Secure Your Business With Microsoft 365 Services By Entrust Network
Author: Entrust Network Services

10. The Role Of Architectural 3d Modeling In Virtual Reality Applications
Author: Vizent

11. The Role Of Erp Software In Modernizing Colleges, Institutes, And Universities Operations
Author: Libsys Ltd

12. Unlock New Opportunities At The Triple Play Realtor Convention & Trade Expo 2024
Author: Andy Kowalski

13. Why 3d Product Rendering Services Are Essential For High-end Furniture Brands
Author: Vizent

14. Unlock The Full Potential Of Your Tractor With The New Holland Tn55, Tn65, Tn70, Tn75 Tractor Shop Service Repair Manual Pdf
Author: Heavy Equipment Manual

15. Call Answering Services For Small Businesses: A Cost-effective Solution
Author: Eliza Garran

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: