Consider this yet another PSA on the erotice travelerwhy you should never ever download Adobe Flash Player, or anything resembling it if you're using an Android phone.
Security researchers at ESET have discovered a new kind of ransomware infecting Android phones on a level nobody's ever seen before. Called DoubleLocker, the exploit encrypts the data on the infected device and then changes its PIN number so victims are locked out of their device unless they pay the ransom demanded by hackers.
SEE ALSO: Why the iPhone 8 Plus is a better camera than a real cameraThe DoubleLocker hack is a threat to any Android device; it's particularly worrying since it doesn't require a "rooted" phone that gives extra access for the hacker to run its own code, but the effect is severe -- locking the user completely out of their own device.
ESET researchers say this is the first time on Android that any malware has been created that combines both data encryption and PIN changes.
The ransomware is distributed through fake Adobe Flash Player downloads shared on compromised websites and it installs itself once you give it accessibility access through the "Google Play Service." You can see a video of how the ransomware is triggered in the video below.
The malware installs itself as the default Android launcher, the piece of software that controls the look and feel of the device and how apps and widgets launch, and essentially creates an invisible shortcut that activates itself whenever the home button is pressed.
You'll know your files are infected if you see a ".cryeye" extension at the end of the file.
DoubleLocker also changes your device's PIN number to a random combination which isn't sent to the hackers. With no digital trail, it's virtually impossible to recover the PIN. The hackers can remotely reset the PIN when you pay the ransom.
Users with DoubleLocker-infected devices have 24 hours to pay 0.0130 Bitcoin (about $73.38 at the time of this writing) to un-encrypt their data. Fortunately, your files aren't deleted if you don't pay up. But still, this is ransomware and since your phone will be locked with an unknown passcode, you're at the hackers' mercy.
At this time the only way to remove DoubleLocker is to perform a factory reset, which will erase all of your files.
However, if you have a phone that was rooted andin debug mode before DoubleLocker locked it up, you can bypass the malware's randomized PIN code without a factory reset, according to WeLiveSecurity. If your device meets both of these parameters, you can by access it with the Android Debug Bridge (adb) and remove the file system where the PIN code is stored. Once that's done, you can switch your device to "safe mode" to disable the admin permissions for the malware and remove it. It's not an easy process and you should definitely wipe the entire device once you've recovered your files, just to guarantee that DoubleLocker is completely removed.
You'll know your files are infected if you see a ".cryeye" extension at the end of the file.
In 2012, Adobe removed Flash from the Google Play Store, officially ending its development on mobile. While Flash was pivotal to the development of the interactive websites during the '90s and early '00s, it's no longer relevant in mobile ecosystems.
Steve Jobs openly criticized Flash for its being a huge battery hog and for its endless security exploits.
While no longer crucial on mobile devices -- developers have moved on to the faster and more secure HTML 5 -- DoubleLocker is a reminder that there are many people who aren't informed on the dangers that come with installing Flash.
It might take something as courageous as Adobe publicly denouncing Flash before people ingrain it in their brains that installing Flash anythingis extremely insecure and not worth potentially compromising their devices.
Topics Android Cybersecurity
Miami Heat vs. Golden State Warriors 2025 livestream: Watch NBA online
An official 'Bachelor' Fantasy League now exists
How Karun Nair cheated death and went on to score a triple ton
Hong Kong is scrapping visa
They met on Tumblr, and their relationship outlasted their accounts
Pagan priest finally allowed to wear goat horns in license photo
The real story behind this viral NBA video
A startup will give you free birth control with the code 'Donald Trump'
NYT Connections Sports Edition hints and answers for February 15: Tips to solve Connections #145
Beyoncé's holiday decorations include a 'Lemonade'
Best smart scale deal: Save over $25 on Renpho Smart Scale
Twitter's chief technology officer Adam Messinger is leaving the company
'Pokémon Go' players have walked around the earth more than 200,000 times
Watch this NHL star choke up after seeing his young son celebrate his crucial goal
Australia vs. India 2024 livestream: Watch 5th Test for free
Russian deep
18 soup pairings for your social anxieties
Paytm outage, internet shutdown give India a reality check on its cashless dreams
The Ultrahuman Ring Air now comes in 18K gold – for a steep price
Richard Marx subdues violent passenger to help 'ill
WikiLeaks' Julian Assange charged under the Espionage ActCongress agrees: It's time to regulate facial recognition technology'Jurassic World' tour unveils massive model TNo one agrees on what iMessage Tapbacks actually meanAmazon just unveiled its most impressive tech yet, and it's an actual truckArianna Huffington is now selling ridiculous things like phone bedsGoogle stored some users' passwords in plain text for yearsWomen actually have a point when complaining about cold offices, study saysAmazon just unveiled its most impressive tech yet, and it's an actual truckLG to add Alexa support to its 2019 ThinQ TVsA sea of children dancing to 'Old Town Road' is the best thing you'll see todayThe Boring Company wins contract to build Las Vegas tunnelFacebook has already removed more than 2 billion fake accounts this yearDudes Snapchat baby penguin they found wandering through city drainMagic mushrooms ease anxiety in cancer patients, studies showPeople want to elect Hillary so bad, they created the biggest Change.org petition everNYC subway will soon accept Google Pay at select turnstilesPeople want to elect Hillary so bad, they created the biggest Change.org petition everIt was a bit too easy for this woman to convince her husband she adopted a coyoteFacebook has already removed more than 2 billion fake accounts this year How to fix work relationships that are driving you crazy Ransomware attack hits Port of San Diego Yes, Donald Trump basically called for Russia to hack Hillary Clinton Facebook: 50 million accounts 'directly affected' by hack Hacker backpedals on his brazen threat to delete Mark Zuckerberg’s Facebook account Women of all ages are empowered by Hillary Clinton's nomination Facebook exec blasts WhatsApp founder for being 'low Turns out Ross and Rachel from 'Friends' were initially never meant to go on a break Traffic cam catches cyclist narrowly escaping car crash The 'blood boy' clinic is coming to NYC so rich people can live forever Satirical Hillary Clinton makes the case her supporters wish the real one could ALS ice bucket challenge leads to real In an 'audacious' move, Australia's banks are taking the fight to Apple Reboot your mind with this 24/7 lo Sophie Turner says 'Game of Thrones' finale will divide fans Facebook announces $399 Oculus Quest standalone VR headset Why the author of ‘Fight Club’ is writing a coloring book for adults What's coming to Netflix in October 2018 'Minecraft: Dungeons' delivers a new way to play 'Minecraft' in 2019 Your Instagram account may have been compromised by hackers, too
3.3882s , 8288.03125 kb
Copyright © 2025 Powered by 【the erotice traveler】,Creation Information Network