New Android Ransomware ‘DoubleLocker’ Launched

Cyber-criminals have created one Android ransomware which not only encrypts data of the device owner but also prevents access of the hijacked device by the victim. The latter it does by altering the PIN. The ransomware known as DoubleLocker makes a combination of an infection mechanism and twin highly efficient tools to ultimately make victims pay up to the attacker.

The ransomware is the first such which manipulates accessibility services of Android. Thus it encrypts data as well as blocks the device from access. The discoverer of the malware is researchers from security company ESET. The researchers identified the ransomware as Android/DoubleLocker.A which has been created on the basis of one special banker Trojan that notoriously accesses Android operating system's services. Nevertheless, DoubleLocker as such can't hack the banking credentials of a potential victim followed with erasing his account. Rather it enjoys twin highly effective tools with which it extorts the money. Android ecosystem hasn't had the kind of DoubleLocker ransomware anytime earlier. Welivesecurty.com posted this, October 13, 2017.

DoubleLocker loads itself in the form of Android launcher by default, a program which regulates the device's appearance and feel as well as the way widgets and applications are launched. In addition, it creates a shortcut not visible to the eye which starts working the moment a user presses home button.

At the time DoubleLocker alters a hacked device's PIN it makes one random combination that the hackers don't get to have. As with complete absence of digital trail, the PIN is simply impossible for retrieving. When a victim pays up the demanded sum, the hackers recreate the device's PIN from remote. People whose devices are infected with DoubleLocker get only 24-hrs for paying up the 0.0130 Bitcoin ransom for decrypting their data. Luckily the ransomware doesn't delete the files of the victim who may choose not to pay up.

To avoid the malware, people must download applications from trustworthy places alone like the Play Store of Google while deal with verified developers. A DoubleLocker infection can be reversed with 'Factory reset' of the smart-phone alternatively, changing to debug mode the rooted devices and avoid PIN lock.

» SPAMfighter News - 10/20/2017