Android Game Hides Crypto-Ransomware Exploit

There is a new encryption ransomware exploit hiding inside a spoofed copy of the popular Chinese game “King of Glory.”  Right now, this malware is affecting users in China, but it is a matter of time before another cyber-criminal group modifies it for English speaking victims.

This game is available on international gaming forums, and is being spread when gamers download a copy to their phone.   Once the game is downloaded, it replaces your home screen, and begins to encrypt any pictures, music, video, or document files it can find on the infected phone.  Then it presents a ransom demand in the style of the recent WannaCry crypto malware.

As a proof of concept, this exploit could be modified to present itself in any type of downloadable phone app, not just games.  Installing apps from forums or third party download sites is always risky.  The best way to protect yourself and your phone from this type of exploit is to only download games and apps from the Google Play store.

Other ways to stay safe are to keep your phone up-to-date by installing system updates and patches when they are offered by your service provider, and using an Android anti-malware app on your phone.

More information:


About the Author:

Cybersecurity guru to business owners in the St Paul, Minneapolis, and western Wisconsin area. Computer security and hacking have been a passion of mine since I entered the computer and networking business in 2000. In 2013 I completed a course of study and certification exam to become a Certified Ethical Hacker (CEH). In 2016 I was certified as a Certified Information Systems Security Professional (CISSP). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of computer security, network security, and web site security. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also provide Cybersecurity Awareness Training for clients and their employees. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. The views expressed on this Web site are mine alone and do not necessarily represent the views of my employer.

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.