Home
News
- After using maps tracking COVID-19 to install malware into PCs, hackers are rumoring a fake coronavirus tracking Android apps to misguide people for downloading the app through which they can inject the ransomware to the user’s phone.
- The DomainTools researchers have found that there has been an increase in the registration of domain names related to coronavirus.
- The description of the app says it can send you a notification when a COVID-19 patient is nearby you.
When the world is facing a catastrophic situation of coronavirus, hackers are busy showing their creativity by misusing the situation to steal money and data from concerned users.
After using maps tracking COVID-19 to install malware into PCs, hackers are rumoring a fake coronavirus tracking Android apps to misguide people for downloading the app through which they can inject the ransomware to the user’s phone.
The DomainTools researchers have found that there has been an increase in the registration of domain names related to coronavirus.
The team found that a specific website, cronavirusapp.site is encouraging the user to install an Android application which will help them to track updated on coronavirus disease.
Moreover, the app is a face for a ransomware known as CovidLock that alters the lock screen password and asks users to pay $100 in Bitcoin for unlocking.
About the website
The site seems unreliable and commits that the app has been certified by the World Health Organization (WHO) and the Centers for Disease Control and Prevention (CDC). The hackers also misguiding the users that the app has gained over 6 million reviews with an almost rating of 4.4 stars.
The description of the app says it can send you a notification when a COVID-19 patient is nearby you. Once you download the app, it asks you for various permission including access to your lock screen.
What does the research team conclude?
Going through the content packaged with malware and SSL certificate of the site, the research team from DomainTool recommended that the hackers behind this scam in connection with other pornographic swindles and Android malware strikes.
The team also said that hopefully, it seems that the ransomware hasn’t spread widely, and they have not found any cases regarding people giving their money. As of now, the best way to ensure once security is to avoid deceitful coronavirus related domains and install apps from the Play Store.
