Ransomware is a type of
application that restricts access to your device until a sum of money is paid.
Ransomware usually presents itself in one of two forms: apps that
restrict access to your device and then demand payment to regain access
to the device, or apps that encrypt data on the device’s external
storage (such as an SD card) and then demand payment to decrypt your
data. To make the scam more convincing, fraudsters sometimes pretend to
be from a credible law enforcement agency and accuse you of doing
something illegal so you’re more likely to pay.
Although
ransomware has begun to target mobile devices, it’s still rare: Since
2015, less than 0.00001 percent of installations from Google Play, and
less than .01 percent of installations from sources other than Google
Play, were categorized as ransomware. Google Play policies strictly prohibit
apps that contain it, and if they detect these scams, it will be removed . Verify Apps, Android.s security system that analyzes apps before they are installed and
then regularly checks more than 400 million devices and 6 billion apps
everyday for PHAs, is another safeguard. And Application Sandboxing,
a technology that forces each app to operate independently of others,
provides another layer of defense. Sandboxes require apps to mutually
consent to sharing data, a protection which limits ransomware’s ability
to access sensitive information like a contact list from another app.
Ransomware protections in Android Nougat
With the release of Android 7.0 Nougat, added new defenses against ransomware, and also made some
changes to address some of the newer tactics of ransomware scams. Here
are a few examples:
Even stronger locks: If you set a lockscreen PIN prior to installing ransomware, ransomware can’t misuse your device’s permissions to change your PIN and lock you out.
Whacking clickjacking: “Clickjacking” tricks people into clicking something, often by obscuring permission dialogs behind other windows. You’re now protected from ransomware attacks that use this tactic to sneakily gain control of a device.
Protecting your data and device from ransomware
Even
with all the safeguards built into Android and Google Play to
protect you from ransomware, there are still a few things that you can
do to keep your device safe.
1. Only download apps from a trustworthy source, such as Google Play.
2. Ensure Verify Apps is enabled.
3. Install security updates and always ensure your device is updated to the latest version to get the best security protection.
5. Be
cautious. Take a moment to read reviews and other information about
apps before installing, to make sure you download the app you’re looking
for.
If you accidentally install ransomware on your phone, you have a few options. First, you can try to boot into safe mode.
Starting your device in safe mode means your device only has the
original software and apps that came with it. If an app is misbehaving
but the issues go away in safe mode, the problem is probably caused by a
third-party app downloaded on your device. If you can boot into safe
mode, try to uninstall the app and then reboot the device. On a Pixel,
you can get into safe mode with a keyboard combination that PHAs can't touch.
If safe mode doesn’t work, then you might have to reset your phone to factory settings.
Many devices running Android allow you to remove dangerous apps by
resetting it to factory settings .This should be your last resort, but
if you’ve backed up your files, resetting your device should be easy. Ransomware on Android is exceedingly
rare. Those
protections, along with extra vigilance about how you download your
apps, will help keep you and your device secure.
No comments:
Post a Comment