Skip to main content
  1. Home
  2. Mobile
  3. News

New 'El Gato' Android ransomware may sound cute, but it packs a punch

Kyle Wiggers
By

el gato android ransomware cat
Flickr/Jarjav CC
A killer software cat may be coming for your text messages, according to a threat report by McAfee Labs Mobile Malware Research team. It’s been dubbed “El Gato” — “The Cat,” in Spanish — because the Android malware’s code contains, of all things, an image of a yowling tabby.

McAfee discovered an instance of El Gato running on a compromised server, but noted that it appeared inert — it wasn’t password protected, and “included code words such as MyDifficultPassw.” 

Recommended Videos

Unlike the pictured kitty, El Gato is anything but cute and cuddly. The malicious software is a form of ransomware, code that renders a device unusable until the victim forks over money. This one is particularly sophisticated, from the sound of it — El Gato can encrypt files, steal text messages, and even “block access” to the affected handset or tablet entirely.

El Gato accomplishes most of its nasty shenanigans remotely, via a connection with an offshore server. It constantly monitors an infected device’s internet connection for commands and, once it receives them, executes on them. Among the most common functions McAfee’s researchers discovered were sending messages from the infected device, forwarding and deleting text messages, locking the device’s screen, and crashing a specific application. Worryingly, it’s capable of performing many of those tasks clandestinely, in the background, making them effectively invisible to victims.

The image contained in El Gato's code.
The image contained in El Gato’s code. Image used with permission by copyright holder

Most of El Gato’s commands are dispatched through a surprisingly polished web-based interface, said McAfee. They can be executed in sequence or individually — stealing a text message, frighteningly, is as easy as clicking a button in a web browser.

Perhaps worse yet, El Gato is capable of encrypting all files on the device’s internal storage — rendering it essentially unusable without the randomly generated password it generates. It contains a means of reversing the damage — the malware has can decrypt any file it secures — but presumably only after an affected user hands over whatever form of payment the attacker demands.

There’s good news, though: as far as malware goes, El Gato is relatively harmless. It hasn’t been observed in the wild yet, and its traffic is entirely unencrypted, making it susceptible to countermeasures. In other words, El Gato’s commands could be intercepted, isolated, and rendered harmless.

El Gato may be the latest instance of ransomware to emerge on Android, but it’s hardly the first. In May, cybersecurity analysts at Malwarebytes Labs discovered Cyber.Police, a malicious app that displayed a countdown timer, threatening message, and an explicit pornographic image to victims. It demanded that users purchase iTunes gift cards in exchange for an unlock code — a component which El Gato thankfully lacks, as of yet.

Editors' Recommendations

Topics
Kyle Wiggers
Kyle Wiggers
Former Digital Trends Contributor
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
One of the best budget phones just got even better
Google Pixel 7a in Snow showing home screen.

Phone deals feel extra sweet when they involve a discount on an already great value phone. That’s the case with the Google Pixel 7a which is currently on sale at Amazon for just $349. Usually priced at $499, it’s even better value while it’s $150 off. It’s unlikely to stay this price for too long and it’s already proving popular, so if you want to get in on the action, do so now. If you’re not certain, take a look at what we have to say about it below.

Why you should buy the Google Pixel 7a
The Google Pixel 7a is a big upgrade from its predecessor and while our review pointed out that its increased price was an issue, that’s no longer something to worry about while it’s on sale. One of the best cheap phones, it offers a lot of great features. One immediate thing to notice is its 6.1-inch OLED display. It’s a full HD screen with a 1080 x 2400 resolution, 20:9 aspect ratio, and Corning Gorilla Glass 3 for durability. It also has a 90Hz adaptive refresh rate so you get smoother scrolling and a generally better experience when watching videos or playing a game.

Read more
Samsung Galaxy Ring: news, rumored price, release date, and more
Three sizes of the Samsung Galaxy Ring, sitting on top of a white display case.

The smart ring market has been dominated by the Oura Ring so far, but that is about to change with the upcoming launch of the Samsung Galaxy Ring. The ring was teased at Samsung's Unpacked event in January and then again at Mobile World Congress (MWC) in February.

The Galaxy Ring is expected to come with various health sensors to help you track your physical fitness and daily activities — all with the backing of Samsung Health. It's one of the most highly anticipated releases of the year, and this is everything we know about it (so far).
Samsung Galaxy Ring: release date

Read more
Motorola just announced three new phones, and I need them right now
Renders of the Motorola Edge 50 Pro and Edge 50 Ultra smartphones.

We're barely four months into the year, and Motorola has already had a busy 2024. After launching multiple new Moto G phones this year, the company has now announced its new Motorola Edge 50 series.

There are three phones in total, and they look like formidable alternatives to some of the best Android phones available today — including the Pixel 8 and Galaxy S24 series. Here's what you need to know.
Motorola Edge 50 Ultra

Read more