New ransomware, known as Koler.A, has been detected on Android devices. The malware has infected devices globally, notably in the United States, U.K., France and the Netherlands.
Koler.A sends a ransom screen to the user claiming to be from the FBI. Accompanied by a picture of Barack Obama, the malware utilizes geolocation services to personalize the message to each recipient. While some ransomware will lock the screen of the infected device, Koler.A employs continuous popups to deliver its message. The message warns the user that they have been caught browsing illegal / pornographic content, and that a $300 payment is required to regain control of the device and clear the user of any wrongdoing.
Koler.A infects by redirecting users to adult-content (pornographic) sites that prompt the user to accept a malicious APK package to continue viewing content. Some permission requests are for full network access and authorization to run at startup.
Appthority co-founder & chief architect, Kevin Watkins, weighs in on the matter further: “With personal and company-owned mobile devices, the ability to obtain information such as pictures, location tracking, call logs, and even microphone and camera recordings through mobile apps would allow the bad guys to access and mine very real and targeted user and proprietary corporate information from a mobile device to hold for ransom. Plus, the growth of mobile devices globally and in the enterprise means the bad guys can carry out this type of attack from anywhere in the world.”
In other recent mobile news, Apple’s claims that emails are protected using its Data Protection technology are being put to the test after a security researcher has found that the latest updates do not encrypt email attachments. Mobile Mail on versions iOS 7.0.4 and iOS 7.1, as well as the most current, iOS 7.1.1, possess this security flaw.
This lapse is noteworthy, but not dire. The vulnerability cannot be accessed remotely, so unless an iPhone is stolen, this problem shouldn’t cause too much concern. However, individuals using Mobile Mail for business might want to avoid sending attachments until the flaw is fixed. Apple is aware of the issue and is currently working to correct it.
As we continue to see, the threat of mobile app malware, vulnerabilities and risky behaviors are leading concerns for enterprises. Appthority provides the industry’s first fully automated App Risk Management service that employs static and dynamic analysis to discover the true behavior of apps and measure the total risk within minutes. Bringing trust to the app ecosystem, with the largest database of analyzed public and private apps from a global network of sources, Appthority is enabling a safe and secure mobile workforce for leading companies around the world.