Skip to main content

New Android ransomware is spreading through text messages

There’s a new type of Android ransomware making the rounds that leverages SMS text messages to spread, according to a new report from cybersecurity company ESET. The ransomware has been active since July 12, and essentially uses victims’ contacts lists to spread.

According to the ESET blog post, the malware is called Android/Filecoder.C, and was first distributed on Android developer forums on Reddit, including the XDA Developers subreddit. On these forums, the malware was distributed through pornographic posts.

Usually, the ransomware is disguised as an online sex simulator game, but sometimes its also a tech-related app. Once downloaded, the infected .APK file initiates contact with a server to access a list of addresses and encrypt and decrypt files in the background. It then sends the text messages, and scans the device to encrypt files with the extension “.seven.” That prevents users from being able to access files on their own device. Users are then told that to decrypt their files, they have to pay a ransom — which is usually between $94 and $188 — in the form of Bitcoin. According to the report, the ransom message could be shown in one of 42 languages, maximizing its reach. The malware is able to choose the language of the system, so the user can understand it. Once the ransom is paid, a the private key is sent to the victim, and they can then decrypt the files.

Once the malware is on a device, it’s able to send text messages to contacts on the phone with a link to an app that apparently uses the recipients’ photos — when, of course, it’s actually a malicious app. Sometimes, the link is masked using a link.

It’s important to note that if you do find yourself with the malware, your files may not be lost, and you may not have to pay the ransom. According to ESET, while the ransom message says that files will be deleted in 72 hours, that isn’t always the case. Not only that, but encrypted files can be recovered without paying the attackers — though ESET is quick to note that if the attackers fix the flaws, the malware could become more advanced and become a more serious threat.

So how can you prevent being attacked? Simple — don’t download any apps from third-party sources, and don’t click on links sent via text message that tell you your photos are being used in an app.

Editors' Recommendations

Christian de Looper
Christian’s interest in technology began as a child in Australia, when he stumbled upon a computer at a garage sale that he…
This new Android tablet has an e-ink screen that destroys the Kindle
Tab C Ultra by Onyx

Onyx is one of the few brands that seem bullish about the potential of e-ink screens, and it makes fairly impressive products while at it. I recently got my hands on the Onyx Boox Tab Ultra with a monochrome e-ink display and was pleasantly surprised by its unique appeal. Now, the company is taking a big leap with a new variant that replaces the black and white screen with a full-color e-ink panel on its latest tablet — something the Kindle has never been able to achieve.

Say hello to the Onyx Boox Tab Ultra C, an Android tablet that stands out with its 10.3-inch color e-ink screen. This one boosts the resolution to 2480 x 1860 pixels, offering a higher pixel density compared to its monochrome sibling. Onyx has deployed what it calls a Kaleido3 screen on its latest tablet, which promises “soothing and soft tones.” The electronic ink panel looks and feels more like a newspaper than a glossy screen and also happens to be easier on the eyes without minimal risks of visual fatigue.

Read more
The first Android 14 beta just landed — here’s everything that’s new
Screenshots of Android 14, showing the new back gesture button and share pop-up.

The first open beta of Android 14 has been released by Google for compatible Pixel smartphones. This is a public beta and not a develop-centric build, which means you can install it on your phone without any technical hassles. All you need to do is have a compatible Pixel device, register for the Android 14 beta testing program, and you will get the update via the OTA channel like a regular software update on your phone.

Now, Android 14’s first public beta is a tad light on user-facing features in its current avatar, but more tricks might be added down the road. One of the most notable tweaks is that the back arrow identifier, which appears on the screen when you swipe left or right in order to go back to the previous page, is now more prominent. Google says the larger arrow helps “improve back gesture understanding and usefulness” and that it will play well with the Material You theming system.

Read more
How one of the year’s best Android phones made me a better photographer
Xiaomi 13 Pro camera lens in black and white

Photography originally established itself without color, but with the arrival of colors in the 1890s, monochrome pictures slowly disappeared. It is still practiced today but is only popular among a niche set of photographers.

As a non-photographer myself, I use smartphones to capture photos, so the art of monochrome photography was unknown to me. That is until I used the Xiaomi 13 Pro and its Leica-powered cameras, which not only introduced me to the style but made me a better photographer overall.
The many shades of monochrome

Read more