Android ransomware attacks increase four-fold in One Year and UK users are among those most at risk

The latest findings published by Kaspersky Lab revealed that the encounters with android ransomware have increased four-fold in the last year. These attacks usually targets Google’s Android operating system and are normally seen on desktop devices. Basically, the criminals use certain powerful sub-types of malicious softwares to control the devices of users and ultimately block them from accessing files and information. Users can only gain access when they have paid a set-free amount, usually in Bitcoin.

The key findings

The findings of the study were based on metrics from Kaspersky Lab own tools on smartphones, and the data revealed that the ransomware attacks have become widespread over the year. Previously, the firm had managed to stop 35,413 attacks by March 2015, but now it appears that the number of these attacks has increased four-fold to 136,532 in just 12 months.

It was further discovered that the ransomware on android-based devices take up a large share of all malware attacks stopped by Kaspersky firm. The number of attacks has increased dramatically from 2.04% in 2014-2015 to 4.63% in 2015-2016. Although PC users experience a great risk of ransomware attacks as compared to android users, the situation with Android ransomware is still a nerve-racking trend.

The most affected countries

The data clearly indicated that the United Kingdom, Germany, and Canada were the most targeted by ransomware attacks than any other countries. Germany experienced 22.9 per cent of users attacked with ransomware, followed by Canada at 19.61 per cent, and then the United Kingdom at 16 per cent. Kaspersky assumed that these countries experience higher attacks because they have much more developed mobile and e-payment infrastructure and penetration than other countries featured on the list, or not in it at all. However, the other developed countries equally face the risk of mobile ransomware due to the advanced mobile technology.

Groups of malware

A report on the ransomware threat landscape discovered that criminals use only four groups of malware to get close to users money as possible, and then attacks the user who can transfer the set-free amount in couple of clicks. The groups of malware include: Svpeng, Fusob, Pletor, and Small.

Fusob is becoming increasingly common and has been detected in over 100 countries. This strain of mobile ransomware is characterised by the classic tactic of purporting to be a warning from a Cyber Police department. Then, the users will be asked to pay a fine without specifying the crimes committed. The most interesting part is that this type of ransomware malware will not run if it discovers the device uses a language from Eastern Europe, such as Armenian, Bulgarian, Russian and Hungarian.

According to Kaspersky, the extortion model is here to stay. The rapid evolution of ransomware attacks makes it more likely that it will ultimately start to appear on other forms of connected device, such as smart TVs, smart watches, in-car entertainment systems, and other home smart products. At the moment, there are only a few concepts to proof some of these devices. Also, the actual appearance of the malware that targets these devices is yet to be discovered.

Kaspersky Lab recommendations

· Install apps only from official app stores.

· Atleast ensure that you have a reliable security solution in place to detect malware and malicious web links.

· Keep yourself updated on the latest forms of malware propagation to help detect an attempted social-engineering threat attack.

· Be careful when installing apps from non-official sources. You should not install such apps without a reliable security solution.