Malicious Android Virus Has Been Caught Making Record Ransom Demands

Check your app permissions people ๐Ÿ˜
anyaberkut via Getty Images

Itโ€™s a weekday evening.

Youโ€™re on the bus home, catching up on WhatsApps and texts from friends as the dreaded โ€œlow batteryโ€ warning pops up on screen โ€“ yet again.

You remember the app your colleague mentioned โ€“ he said it boosts phonesโ€™ battery lives โ€“ so you download it.

It takes a couple of minutes to install and then requests permission for admin rights. You click โ€œokayโ€ โ€“ itโ€™s just part of the T&Cs, right?

But as you attempt to return to the home screen, the phone locks and a message flashes on to the screen.

This time, however, itโ€™s not a text or a WhatsApp. Itโ€™s a ransom demand.

โ€œYou need to pay for us, otherwise we will sell portion [sic] of your personal information on black market [sic] every 30 minutes,โ€ the message reads.

You carry on reading...

โ€œWE GIVE 100% GUARANTEE THAT ALL FILES WILL RESTORE AFTER WE RECEIVE PAYMENT. WE WILL UNLOCK THE MOBILE DEVICE AND DELETE ALL YOUR DATA FROM OUR SERVER!TURNING OFF YOUR PHONE IS MEANINGLESS, ALL YOUR DATA IS ALREADY STORED ON OUR SERVERS! WE STILL CAN SELLING IT FOR SPAM, FAKE, BANK CRIME etcโ€ฆ We collect and download all of your personal data. All information about your social networks, Bank accounts, Credit Cards. We collect all data about your friends and family.โ€

The hackers want you to pay ยฃ140 in bitcoin to get your phone unlocked again.

If you donโ€™t, you fear your private life and your bank details will rapidly be unravelled on the dark web.

This isnโ€™t an episode of Mr Robot. Itโ€™s a genuine ransomware demand reported by CheckPoint, a cybersecurity firm, earlier this week.

The virus behind it, dubbed Charger, infected an Android device via an app called Energy Rescue, before CheckPoint researchers quarantined the phone.

Google has since removed the app from its app store, Google Play, and added the malware to Androidโ€™s built-in protection mechanisms.

But ransomware is growing in popularity and CheckPoint researchers suggest that Chargerโ€™s high ransom fee could be a sign of things to come.

In the few cases where malware has been used to target mobiles, the charges have been small โ€“ $15 or so.

But a CheckPoint spokesperson said in a blog: โ€œ[This virusโ€™s high demand] could be an indicator of a wider effort by mobile malware developers to catch up with their PC ransomware cousins.โ€

Itโ€™s yet another example of why we should all be keeping a close eye on our appโ€™s permission requests.

Google has not responded to HuffPostโ€™s request for comment.

Close

What's Hot