14 DAY TRIAL // Fake antivirus programs, or FakeAVs, have been targeting desktop computers for quite some time now. However, experts report that cybercriminals have started developing such threats for Android devices as well.
Symantec has spotted a threat dubbed Android.Fakedefender. Once installed, the FakeAV informs victims that several threats have been identified on their device.
Similar to classic FakeAVs, the victim is instructed to register the application – a process which implies paying a certain fee – in order to remove the alleged threats.
The interesting thing about Android.Fakedefender is that it locks up the device just like ransomware.
In many cases, users whose devices are infected with the malware are prevented from uninstalling the malicious app. The FakeAV also blocks the victim from launching other applications.
“The threat will also change the settings of the operating system. In some cases users may not even be able to perform a factory data reset on the device and will be forced to do a hard reset which involves performing specific key combinations and/or connecting the device to a computer in order to perform a reset using software provided by the manufacturer,” Symantec’s Joji Hamada noted.
“If they are lucky, some users may be able to perform a simple uninstall due to the fact that the app may crash when executed because of compatibility issues.”
Experts believe that FakeAVs might become a serious problem for Android device owners. So to make sure that your device isn’t infected with such a threat, Symantec recommends that you download apps only from trusted websites, and install an Android antivirus solution.
Take a look at this interesting video in which Symantec shows how FakeAVs can lock up an Android device: