Malwarebytes reports that a new Android malware called DroidLock has been discovered actively targeting users, particularly Spanish-speaking ones, by tricking them into installing a malicious app from phishing sites that impersonate legitimate services; once installed with Device Administrator and Accessibility permissions, DroidLock takes full control of the device, uses overlays to capture unlock patterns, can change PINs, access messages and contacts, and displays full-screen ransom demands threatening to delete files unless a payment is made within a short timeframe. Unlike traditional ransomware, it doesn’t encrypt files but locks users out and exerts remote control via Virtual Network Computing (VNC), making it effectively a locker-style threat that holds the device hostage. To stay safe, experts recommend only installing apps from official stores, carefully checking permissions, keeping Android updated, and using reputable mobile security tools like Malwarebytes for Android to detect such threats.
