It seems like the problems for Cyberpunk 2077 video game are far from over as the fake Android app is infecting Android devices through a fake website imitating Google Play Store.
Kaspersky Lab’s Tatyana Shishkova has discovered a new Android malware with ransomware capabilities in a fake version of Cyberpunk 2077 video game on a fake marketplace imitating Google Play Store. On this marketplace, the game is listed as Cyberpunk Mobile (Beta).
What’s worth noting is that officially, the game is only available on Windows, Stadia, PlayStation, and Xbox – There is no Android version of it, however, to download Cyberpunk 2077 on an Android device, one needs to have a Stadia subscription, or the game can be bought for a fixed price.
See: Researchers Found 60+ Malware Infected Android Gaming Apps on Play Store
This means threat actors are still trying to exploit the hype surrounding Cyberpunk 2077. The malware was discovered earlier this week. Shishkova tweeted that it is a type of CoderWare ransomware specific to the Black Kingdom family.
Shishkova posted screenshots of the game on Twitter, which shows that the fake app features user reviews to appear authentic. The malware works in such a way that when a user downloads and executes the binary file, a message informs them that their device is infected with CoderWare ransomware.
The user is then shown a ransom note to take a screenshot of the message containing decryption information. As shown in the screenshot below, the victim is requested to pay $5 ..
Support the originator by clicking the read the rest link below.
