Story image

FLocker malware targeting Android smart TVs

21 Jun 2016

FLocker, a malicious ransomware agent, is targeting smart TVs running the Android operating system, Norton reports. The FLocker ("Frantic Locker") ransomware does not encrypt files on the device, but it does lock the screen.

This blocks user access to the TV and allows for attackers to steal data. While the ransomwhere and its several thousand variants have been targeting Android phones since 2015, it's the first time one has made its way on to smart TVs.

The devices are infected by SMS capabilities or using the TV's web browser and accidentally visiting malicious websites. Although the TVs are not specifically targeted, they are vulnerable to the malware.

This particular strain of FLocker ransomware uses a fake notification from a law enforcement agency such as the U.S. Cyber Police and the Japanese Ministry of Justice. The message accuses users of hosting or downloading illegal content or being involved in illegal activities. It then demands a US$200 'fine' through iTunes gift cards in order to unlock the TV.

Norton recommends that users stay protected by:

  • Avoiding the use of SMS mesaging or web browsing apps on your TV. Never click suspicious website, email or text links
  • Using the official store app for your TV, because third party stores can host malicious apps
  • Updating your TV's operating system if possible, to make the most of patches against malware.
  • If infected with FLocker, do not pay the ransom, or else the attacker will gain access to your Smart TV. Instead, contact your TV's vendor
  • For PC users, Norton recommends using antivirus and antimalware software. Norton says it detects the malware mainly as Android.Lockdroid.E, Android.Lockdroid.H and Trojan.Gen.2.
CSOs - are you prepared for cloud cryptojacking?
A recent report found that almost half of the organisations surveyed have malware in one of their cloud applications.
Cryptomining apps discovered on Microsoft’s app store
It is believed that the eight apps were likely developed by the same person or group.
WhatsApp users warned to change voicemail PINs
Attackers are allegedly gaining access to users’ WhatsApp accounts by using the default voicemail PIN to access voice authentication codes.
Swiss Post asks public to hack its e-voting system
Switzerland’s postal service Swiss Post is inviting keen-eyed security experts and white hats to hack its e-voting system.
Spoofs, forgeries, and impersonations plague inboxes
It pays to double check any email that lands in your inbox, because phishing attacks are so advanced that they can now literally originate from a genuine sender’s account – but those emails are far from genuine.
Flashpoint signs on emt Distribution as APAC partner
"Key use cases that we see greatly benefiting the region are bolstering cybersecurity, combating insider threats, confronting fraud, and addressing supply chain risk, to name a few."
The attack surface: 2019's biggest security threat
As businesses expand, so does their attack surface – and that may be the biggest cybersecurity risk of them all, according to Aon’s 2019 Cyber Security Risk Report.
Opinion: Cybersecurity as a service answer to urgent change
Alan Calder believes a CSaaS model can enable a company to build a cyber resilience strategy in a coherent and consistent manner.