We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Ransom:AndroidOS/SimpLock!rfn
Aliases: No associated aliases
Summary
Microsoft Defender for Endpoint detects and removes this threat.
This threat arrives on an Android device through various means, such as, but not limited to:
- Installation of apps from unknown or unverified download sites
- Exploitation of vulnerabilities
- Being dropped or downloaded by another malware
After it successfully installs and launches on the device, this threat has capabilities that might further compromise the device or the network the device is connected to.
Prevent this threat and other threats from further compromising your device by configuring and enabling the following features on Microsoft Defender for Endpoint on Android:
- Web protection
- Vulnerability assessment
- Malware and phishing reports
- Privacy Controls
