Slashdot Mirror
Porn-themed Android Ransomware Takes Your Picture Before Asking For Money
An anonymous reader writes with a link to The Stack's report that researchers at security firm zScaler have spotted a clever new variety of Android-based ransomware, which takes advantage of phones' built-in cameras to add a personal touch; it activates the camera to take a snapshot of the user, which is then incorporated into its blackmail note. "The crudely-planned app features an extraordinarily demanding privacy/functionality swap at install, and proceeds to demand a $500 'FBI fine' via PayPal, rather than any of the cryptocurrencies which most ransomware authors currently favour."
Take a photo of everyone for consuming porn. Declare everyone a pervert for being sexual.
When we accept openly that everyone likes sex, we get rid of the stigma, and disarm those who would use our nature against us.
A Paypal account? Paypal locks your account if you so much as blink too fast or too slow. They're never going to see the money. Plus, what is their plan for getting the money out? Having Paypal mail them a check?
I read the internet for the articles.
It's probably just a matter of time, perhaps not much time, before some entrepreneurs figure out that is a generally-useful marketing tactic. We can expect that the little "selfie" cameras on phones and tablets are being turned on briefly by assorted ads delivered along with the web page you looked at, and sent back to the mother ship for later use. You won't have to go through the bother of signing in or otherwise identifying yourself, since your ISP/cell company can supply them with that info (for a price). They can then use the photo and your info to persuade you that you should buy some of their products. Or they can just fake the session in which you ordered what they want to sell you.
I generally keep a bit of opaque tape over those cameras except when I actually want to use them.
Lessee, I took the tape off this laptop's camera; let's see if the slashcode knows how to send y'all my photo. It's a Macbook Pro, which should tell you which exploit to use. I'm currently sitting on the patio, in the shade of a grape vine, waiting for the temperature to reach a new historic high here in the Boston area. If you can find my photo, tell me the text on my t-shirt. If anyone succeeds, it'll show that this story isn't just someone's imagination. ;-)
Those who do study history are doomed to stand helplessly by while everyone else repeats it.
Perhaps parents whose recent photos of their child haven't yet been backed up? Someone who simply doesn't want to go through the hassle? Can we assume that quite a majority of users don't use their devices in the most perfectly organized manner possible?
"You should always be prepared to wipe" is not an excuse for the poor security that comes standard on many phones. I see tons of complaints here about how crappy the Apple and Microsoft walled-gardens are. Which I agree with. But instead of the same comments lambasting that approach, I'd like to see insightful conversations focusing on securing Android and making the iOS/Windows approaches more flexible.
All my liberal friends think I'm a conservative, all my conservative friends think I'm a liberal.
The VAST majority of smartphone users.
Exactly. They are smartphone users not smart phone users.