Dubbed Black Rose Lucy, or simply Lucy, the malicious program was initially discovered in 2018 as a Malware-as-a-Service (MaaS) botnet and dropper for Android devices. Since then, the threat has evolved with capabilities that allow it to encrypt files and take over the victim’s device.
After being downloaded to a smartphone, Lucy encrypts files and displays a ransom note in the browser window, claiming that the FBI has evidence of pornographic material being stored on the device and demanding that a $500 “fine” be paid.
