Fortunately, you can’t download this application from the official Google Play Store. This Trojan can be delivered to users from third party markets, warez forums or torrents. The most effective way to avoid getting infected and being locked out from your device is by proactive preventative measures.
Android malware is super-scary, thanks to the very thing about Android that I love: it doesn’t have an obstructionist attitude about software that modifies the behavior of the device. This story is about another type of lockscreen ransomware. After the user is tricked into installing the malware, it changes the device’s lockscreen PIN/pattern and locks the phone until a ransom amount is paid. It aggressively defends itself from any attempt to disable or remove it.
Nonetheless, it’s not of great concern. In the Android world, the Google Play Store is the canonical app store. An Android phone will let you install apps from a different app repository — or even from a disk file — if you go through a bunch of hoops. The “proactive preventative countermeasures” indicated by the article include using Android security tools that the author’s employer sells (fair enough).
Another effective Proactive Preventative Measure would be “only use apps from the Google Play Store.” It seems like every story from an Android user who wound up with malware includes the phrase “I didn’t get this app from Google Play, but it promised me free porn” or something similar about a super-awesome website that had pirated versions of, like, every commercial Android app ever, and dude…it was all free!!!
It’s another example of the difference in philosophy between iOS and Android. iOS works very hard to prevent you from doing something that Apple thinks isn’t in your best interests. Android warns you that safety rules are there for a reason, but in the end, if you want to break your fool neck, hey, it’s your funeral.
Well. I’m sorry for anyone who had their phone bricked by this malware. I hope the porn was really worth it.