And it is that developers or scammers who try to waste people’s time or, even worse, try to commit a cyber crime do not stop acting. On this occasion, the modus operandi is something different, since Google has nothing to do when acting against this scam. It turns out that the game is not directly in the app store, but is outside of it.
The malware contained in this fake Cyberpunk 2077
Luckily, you only have to draw that thick veil that they have put on to realize that it is all a hoax. It is so obvious that it would be ridiculous to fall into the trap, but even so there have been reports of users who have not noticed and downloaded the supposed game. As you can imagine, the data theft cases they have not been waiting.
A threat actor is reportedly spreading fake cyberpunk 2077 installers which installs CoderWare ransomware. To spread the so-called ‘Cyberpunk 2077 Mobile’ game, threat actors are using websites that mimic the Google Play Store and with the name of CD Projekt Red as a developer for users to install the ransomware, which translated into Spanish amounts to a data hijacking. As if that were not enough, they have created a opinion network to guarantee the validity of the game and that there is no doubt to download it.
But not all is lost. If we know of someone who has suffered these fatal consequences, something can still be done about that data. And we are not saying it to give hope, says a malware analyst from the Kaspersky company. It turns out that the ransomware makes use of an encrypted key, so it can be make a decryptor to recover lost files, if any.
It is not the first scam of this game on Android
Cyberpunk 2077 has been on the market for a very short time, but it has already had time to design a few scams taking advantage of this sweeping trend in the game. Last month a similar ransomware disguised as a Cyberpunk 2077 game installer for Windows. Unlike Android, the Windows version included a Python-compiled executable that would encrypt the files targeted by the malware. Unfortunately for this case there is no information on the encrypted key, at least for now.
New Android #Ransomware disguised as # Cyberpunk2077 game.
Downloaded from fake website imitating Google Play Store.
Extension: .coderCrypt
Family: CoderWare / BlackKingdom https://t.co/JBudDP6vG1 pic.twitter.com/TdM4SAkFWl– Tatyana Shishkova (@ sh1shk0va) December 16, 2020
You already have the information and images of this scam. So, we highly recommend don’t download this cyberpunk 2077 totally false and that only seeks to steal data indiscriminately. At the moment and officially, it is only possible to play the CD Projekt title on PS4, PS5, Xbox Series X, Xbox One and on Google Stadia.