Researchers at Kaspersky Lab reported the first strain of Android ransomware that encrypts the contents of a device. The ransomware, detected as Trojan-Ransom.AndroidOS.Pletor.a, has infected more than 2,000 machines in Russia and the Ukraine. Victims become infected when they use their device to visit a site hosting the malware. Victims are redirected to a pornographic site where they re enticed to download a porn app that contains the ransomware. Payment is demanded over digital services such as QIWI VISA WALLET or MoneXy.
Source: https://threatpost.com/android-ransomware-first-to-encrypt-data-on-mobile-devices/106535/