Table of contents:
- Ransomware reaches mobile
- What to do if you have ransomware on your phone
- How to prevent a ransomware attack
- Keep your phone always updated
- Make backup copies
- Have an antivirus installed on your mobile
Who does not remember Wannacry, the massive ransomware attack that Telefónica suffered in May 2017. At that time the company's headquarters in Madrid suffered a large-scale computer attack, which quickly spread among the teams of hundreds of employees. The solution: pay a ransom so that the files and files were released and everything returned to normal. This is precisely the main objective of ransomware attacks: to take control of the computers until the company or user pays what they are forced to do.
Ransomware reaches mobile
The problem is that ransomware is no longer just a thing for computers, for some time there have also been cases on Android devices. In fact, security companies have been detecting an increase in these types of attacks on smartphones and tablets for some time, with the danger that this entails. It not only tries to infiltrate Google Play through fraudulent apps, or via email, there have also been cases of ransomware through text messages.Without going any further, at the end of July we met Android / Filecoder.C, a type of ransomware distributed in forums and pages, which with a simple SMS is capable of causing our mobile to become infected. What cybercriminals do is add a download link that contains the dreaded ransomware, so that the victim believes that a software or file is downloading, although it really is a threat that compromises their terminal.
The worst part is that the scammers gain control of the device and encrypt all the files. In addition, they also have the option of locating the contact list to continue sending SMS. In the end, if you want to get your mobile back again, you will have no choice but to succumb to the attackers' blackmail, something not highly recommended, since on many occasions it is not even of any use. Another added problem is that they use more than 30 different languages, so the threat can spread throughout much of the world. Likewise, they encrypt a large number of files, among which we can highlight.jpg,.doc,.xls,.mp4,.zip,.rar… When encrypting them, they add the extension.seven so that the victim cannot open them and has to pay the ransom.
The way to know that we have been victims of a ransomware is for a clear message to appear on our mobile, by way of advertising, so that we enter a certain amount of money and thus get it released and leave it operational again. As we say, it is advisable not to give in to blackmail, not pay, and try to recover our phone by other means.
What to do if you have ransomware on your phone
The purpose of a ransomware is to block our mobile to ask for an economic amount in a certain time. Hence the name of this malicious software, which comes from joining the English word "ransom" and "software": hijacking software. The problem is that there are few solutions if we don't want to pay. The only way is to format the device, a big chore if we have important files and have not previously made a backup.
Keep in mind that if it is an app that has infected us, it will not do any good to delete it. The malicious software itself protects itself by moving to other folders to stop depending on the app it has attached to to enter our computer. To restore your Android mobile to factory settings, you just have to enter the settings section, go to Personal and click on Backup. Once there, click on the Factory data reset section. When you do, the process to erase all data will begin. Next, confirm all the permissions that appear.
If restoring from scratch does not work, it is best to call for service. There they have specialized tools to bring your terminal back to life.
How to prevent a ransomware attack
The best is always prevention. Thus, not only will you avoid a great scare, but you will also avoid having to format your phone to avoid paying the ransom. Now, what is the best way to avoid a ransomware-type attack? We reveal some key tips.
Keep your phone always updated
Having the latest security updates is essential to keep security at bay. Not only from ransomware attacks, but also from Trojans or viruses, more and more friends of Google Play. Therefore, always stay up-to-date when it comes to security patches. Take a good look if a pop-up message appears on your device's panel to tell you to install the new security update. Do not hesitate and do it instantly.
Make backup copies
Having recent backups with all your important data and files is another aspect to consider. It can come in handy and save your terminal in case of hijacking or malware infection. If you don't want to save them on a hard drive, it is best to do the same in a cloud storage service such as Google Drive or Dropbox, which offer free gigs, although if they are spent they have good monthly prices with extra space.
Have an antivirus installed on your mobile
As prevention is better than cure, having anti-malware software installed on your device is essential. But not just anyone. Remember that it is always best if it comes from a developer with experience in the sector, such as AVG, Kaspersky, Symantec or McAfee. All these companies have antivirus applications on Google Play. Choose the one that best suits your needs and keep it always activated.
