LeakerLocker –  Android Ransomware
July 13, 2017
Shah Sheikh (1294 articles)

LeakerLocker – Android Ransomware

LeakerLocker, an Android ransomware that does not encrypt files but rather collects data from the android device such as pictures, messages and browser history and tends to share it with the persons contact if the ransom is not paid.

The ransomware was spotted by McAfee and they claim that the malware is in at least two applications on the Google Play Store, Booster & Cleaner Pro and Wallpapers Blur HD, and both applications have been downloaded by more than thousand users.

Once the application is installed on the device, it loads malicious code from its C&C server allowing the application to collect numerous number of sensitive data of the user and this is also made possible when the user gives unwanted/unnecessary permissions to the application when installing it.

LeakerLocker displays the ransom note on the home screen of the device and includes the details of the data that is collected and the data will be shared with other people if the ransom is not paid.

To evade the ransomware, it is best to not have the two applications installed on your android device and make sure that you do not give unnecessary permissions to applications that shouldn’t be having them in the first place.

If you are a victim of the ransomware, do not pay the ransom as there is no assurance that the data collected by the attacker would be deleted.

Source: https://securingtomorrow.mcafee.com/mcafee-labs/leakerlocker-mobile-ransomware-acts-without-encryption/