Wednesday, April 29, 2020

Black Rose Lucy Ransomware attack on Android Devices

Security Researchers from Check Point Research have discovered that those spreading Black Rose Lucy Malware has added file-encrypting capabilities to their malicious software which was originally designed as a botnet to deliver malware-as-a-service and dropper for other malicious codes.

 

As per the details available to select media channels, Black Rose Lucy Malware turned ransomware encrypts files and data on an Android device and then sends a message to the victim via a web browser mimicking the FBI.

 

The pop message states that the victim has visited a Forbidden X rated website which was banned by law enforcement and threatens to leak info to the FBI if the victim fails to pay a ransom.

 

Check Point claims that the victim is only left with an option of paying $500 penalty within 3 days or might face serious consequences. Another highlight in this ransomware saga is that the victim needs to pay the hackers through credit cards and not Cryptocurrencies such as Bitcoins and Monero.

 

Researchers say that hackers are turning to tactics like spreading mobile ransomware as such devices usually tend to have fewer security features.

 

Note- Black Rose Lucy is reported to have originated in Russia in 2018 and was initially spread through social media links and messaging apps.

 

How to keep your Android Phones secured from ransomware attacks

 

1.) The best way to prevent ransomware attacks on your mobile phone is to keep your phone loaded with antivirus software

 

2.) Think twice before clicking on email & message links as they might turn into phishing scams distributing malware.

 

3.) Never download apps from unknown sources like websites and prefer downloading from only the Apple App Store or Google play store.

 

4.) Better to back your file to a cloud storage platform

 

5.) Always keep your operating system with the latest updates

The post Black Rose Lucy Ransomware attack on Android Devices appeared first on Cybersecurity Insiders.


April 30, 2020 at 10:25AM

0 comments:

Post a Comment