Skip to main content

New Android ransomware is spreading through text messages

There’s a new type of Android ransomware making the rounds that leverages SMS text messages to spread, according to a new report from cybersecurity company ESET. The ransomware has been active since July 12, and essentially uses victims’ contacts lists to spread.

According to the ESET blog post, the malware is called Android/Filecoder.C, and was first distributed on Android developer forums on Reddit, including the XDA Developers subreddit. On these forums, the malware was distributed through pornographic posts.

Usually, the ransomware is disguised as an online sex simulator game, but sometimes its also a tech-related app. Once downloaded, the infected .APK file initiates contact with a server to access a list of addresses and encrypt and decrypt files in the background. It then sends the text messages, and scans the device to encrypt files with the extension “.seven.” That prevents users from being able to access files on their own device. Users are then told that to decrypt their files, they have to pay a ransom — which is usually between $94 and $188 — in the form of Bitcoin. According to the report, the ransom message could be shown in one of 42 languages, maximizing its reach. The malware is able to choose the language of the system, so the user can understand it. Once the ransom is paid, a the private key is sent to the victim, and they can then decrypt the files.

Once the malware is on a device, it’s able to send text messages to contacts on the phone with a link to an app that apparently uses the recipients’ photos — when, of course, it’s actually a malicious app. Sometimes, the link is masked using a bit.ly link.

It’s important to note that if you do find yourself with the malware, your files may not be lost, and you may not have to pay the ransom. According to ESET, while the ransom message says that files will be deleted in 72 hours, that isn’t always the case. Not only that, but encrypted files can be recovered without paying the attackers — though ESET is quick to note that if the attackers fix the flaws, the malware could become more advanced and become a more serious threat.

So how can you prevent being attacked? Simple — don’t download any apps from third-party sources, and don’t click on links sent via text message that tell you your photos are being used in an app.

Editors' Recommendations

Christian de Looper
Christian’s interest in technology began as a child in Australia, when he stumbled upon a computer at a garage sale that he…
Google just announced 10 huge updates for your Android phone
The Home Screen on the Google Pixel 8 Pro.

Google I/O, the annual everything-Google-software fest, has kicked off. As usual, Android takes center stage. From enhanced privacy and Google Wallet upgrades to theft detection and app safety checkups, there’s a lot to look forward to here.

From Android 15 features to more general Android updates, here’s a breakdown of all the major Android announcements from I/O 2024.
Making life easier with Google Wallet

Read more
Wear OS 5 is the future of Android smartwatches. Here’s what’s new
A person wearing the Google Pixel Watch 2.

With the Google I/O 2024 opening keynote having come and gone yesterday, showcasing Google’s various AI initiatives with Gemini AI and more, news about the Wear OS took second fiddle -- until now. After revealing that Wear OS grew its user base by 40% in 2023, Google has just announced Wear OS 5, along with a slew of new watch face updates and health-tracking features.

Here’s what’s new.
Wear OS 5

Read more
Android is getting an AI overhaul. Here’s what it looks like
Android 15 on stage at Google I/O 2024.

At Google I/O 2024, Google has shown off a lot of new improvements coming to Android, thanks to Gemini. With Gemini, Android will be aware of the context on the screen in a variety of scenarios, which will make your life a lot easier. At least, according to Google.

Circle to Search, which was first shown off during Samsung’s Galaxy Unpacked event earlier this year, will be getting some new enhancements. Now, Circle to Search will be a great new study buddy for students. Why? Because it will be able to help with homework, like physics and math. You can simply circle a prompt on the screen, and it will give you step-by-step instructions on how to solve it.

Read more