An employee downloaded and installed a 0day mobile ransomware from Google Play dubbed Charger Charger was found embedded in an app called EnergyRescue. The infected app steals contacts and SMS messages from the users device and asks for admin permissions. If granted, the ransomware locks the device and displays a message demanding payment. The ransom demand for 0.2 Bitcoins (roughly $180) is a much higher ransom demand than has been seen in mobile malware so far.”]
Source: https://blog.checkpoint.com/2017/01/24/charger-malware/