![\"androidencrypt\"](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2014\/06\/05111342\/androidencrypt-1.png\")
<\/a><\/p>\nAndroid Encryptor<\/strong><\/p>\n Last week, reports describing a piece of ransomware that actually encrypted the contents of Android devices began to emerge. This week, Kaspersky Lab expert, Roman Unuchek, described the mobile malware<\/a>, which is called Pletor, as the first of its kind.<\/p>\n Pletor was first spotted around a month ago and has spread to 13 countries over that time period. It has infected more than 2,000 machines \u2013 primarily in Russia and the Ukraine \u2013 but also in other European and Asian countries. The peak of the infections came on May 22 when 500 new infections were reported. The Trojan is up for sale on the criminal underground with an impressive $5,000 price tag.<\/p>\n Pletor is infecting devices that visit fake pornographic websites. The Trojan masquerades as a media player required to view videos on those sites. It\u2019s also spreading in games and other Android applications, as well as a Russian mobile phone forum.<\/p>\n \u201cIf your smartphone has been infected with [Pletor], we recommend that you do not pay the criminals,\u201d Unuchek said. \u201cAll the versions of the Trojans that we have seen contain a key that can be used to decrypt affected files.\u201d<\/p>\n TweetDeck Fiasco<\/strong><\/p>\n We reported on a serious security vulnerability in TweetDeck<\/a> yesterday. It could have allowed an attacker to take over a user\u2019s account, post or delete tweets or deface the account. Twitter very quickly provided a patch for the problem, so users need not worry now, but it may be a good idea to go ahead and change your Twitter and TweetDeck passwords if you use the service. If you followed our advice yesterday and revoked access to the TweetDeck application, it\u2019s probably safe to go back and grant the TweetDeck access to your Twitter account once again.<\/p>\n Interestingly, all the TweetDeck issues that occurred yesterday occurred because of an Austrian teen and aUnicode heart that shouldn\u2019t have ever showed up on his Twitter feed. Read more at Threatpost<\/a>.<\/p>\n MAC Address Randomization<\/strong><\/p>\n Apple gave its fans a sneak-peak at the yet-to-be-released iOS 8 mobile operating system from its Worldwide Developers Conference. The release constitutes a fairly substantial rebuild of the iOS application development atmosphere, and you can read a thorough analysis of what we think here<\/a>.<\/p>\n Perhaps the most significant change though, is Apple\u2019s decision to randomize media access control addresses<\/a> when connecting to wireless networks. MAC addresses are uniquely identifiable. Retailers and others have been known to track MAC addresses to learn more about the behaviors. In iOS 8, iDevices will generate random MAC addresses as they are scanned by wireless networks. The move will quietly make it impossible for retailers to track in-store customer movement and other behaviors.<\/p>\n Are You There, Feedly?<\/strong><\/p>\n A distributed denial of service attack knocked the news aggregation service Feedly and the note-taking and archiving platform Evernote offline yesterday. Evernote pulled out of the DDoS attack pretty quickly and is available to its users at present. Unfortunately, as of Thursday afternoon, Feedly remains offline<\/a>.<\/p>\n Feedly did reappear briefly Wednesday afternoon, but was knocked back offline by another wave of DDoS attacks shortly thereafter.<\/p>\n Stay on the Lookout for Spam<\/strong><\/p>\n Google patched a pretty serious vulnerability in its service earlier this week, closing off a hole that could have exposed an unknown number of user Gmail accounts. Some reports have estimated the percentage of account addresses that could have been exposed as high as 100 percent. You can read up on the technical details of the attack on Threatpost<\/a>. You should be particularly wary of spam in the coming days and weeks, because if anyone exploited this bug in the wild, they could have an absolute trove of Gmail addresses.<\/p>\n In Other News<\/strong><\/p>\n The United States Industrial Control System Cyber Emergency Response Team \u2013 that is the division of the Department of Homeland Security tasked with providing information about industrial control system threats \u2013 issued an alert<\/a> warning about easily hackable electronic road signs.<\/p>\n Mozilla Firefox<\/a> and Microsoft<\/a> issued updates that fixed a number of critical security vulnerabilities. So you should make sure you install those updates for your Firefox browser Windows machine as soon as possible.<\/p>\n