According to security company ZScaler, a malicious Android app disguised as a pornography viewer has been making the rounds. “Adult Player” is meant to offer viewers an adult video player, but instead turns pleasure into displeasure by taking sneaky pics with the front facing camera.
The app then holds the phone hostage and forces users to pay a $US500 ransom through PayPal. It stays persistent even if the user attempts to uninstall to, and frequently pops up over the screen, meaning it can’t be ignored.
The app is not available on the Google Play Store and can be installed from a web browser, which is poor security practice. To avoid being a victim of such ransomware, ZScaler says it is always best to download apps only from the Google Play Store, and ensuring the “Unknown Sources” option under the “Security” settings is unchecked.
This is not the first time we’ve seen apps like this. Perhaps Android M’s upgraded permission manager can prevent this. What do you think?