Cyber Criminals are misusing two noted exploits to install a ransomware on Android devices with older versions.
This happens when the Android users access websites that load malicious Ads.
Researchers also disclosed that ad contained JavaScript code that exploited vulnerability in libxslt.
The libxslt exploit was among the files leaked last year from surveillance software maker Hacking Team.
The root exploit used by module.so is called Towelroot.
After the equipment is infected, Towelroot downloads and installs ransomware file via APK which is calledDogspectusorCyber.Police.
The malicious program prevents users from doing any activity on the equipment till the user pays a fine.
The researchers also found a method to get rid of this.
The users affected will need to do a factory reset, which will delete applications installed.
Remember, by doing factory reset, you should have a backup of your data.
