cognitive cybersecurity intelligence

News and Analysis

Search

Browser-Only Ransomware Abuses Chrome File System Access API to Encrypt Android Photos

Browser-Only Ransomware Abuses Chrome File System Access API to Encrypt Android Photos

A new ransomware technique can now run entirely inside a web browser, with no app installation or root access required. It targets Android photo directories by abusing a legitimate Chrome feature meant for photo editing.

The attack begins with something as simple as opening a webpage that promises to enhance a picture. This method relies on the File System Access API, a Chrome feature that lets websites read and write files once a user grants permission.

Attackers disguise their request as a photo enhancement tool, convincing victims to hand over folder access voluntarily. Once access is granted, the page can quietly encrypt image files stored on the device.

The technique first surfaced inside code generated by an artificial intelligence model rather than being built by a human attacker. The AI system combined a fictional ransomware idea with a real browser capability, turning a flawed concept into a workable attack blueprint.

Check Point said in a report shared with Cyber Security News (CSN) that they identified the sample while reviewing files linked to the AI model DeepSeek.

The sample called itself InfernoGrabber and was built as a Discord themed avatar upscaler, though its true purpose was to steal and lock personal files. One part of the messy code stood out, the ability to request folder access and tamper with files inside.

That single working piece became the foundation for a proof of concept researchers later built themselves, confirming the risk was real rather than theoretical.

Browser-Only Ransomware

The File System Access API was designed for legitimate tools like online photo editors and document apps. It lets a webpage ask for permission to read or modify files in a chosen folder, and once approved, the page can act on that folder directly.

This feature has existed on desktop Chrome since version 86 and reached Android with Chrome 132.

Researchers tested the technique on Android devices running Chrome 148 and found the root of the default Pictures and Videos folders, including the DCIM directory, was not restricted.

That matters because Android photo galleries often hold identity documents, banking screenshots, and years of personal memories. A fake AI photo upscaler gives users an easy reason to approve folder access.

Fake Discord avatar AI upscaler (Source – Check Point)

During testing, the process felt completely ordinary. A user opens a page, picks a photo, chooses a folder to save the improved version, and grants the permission Chrome asks for.

Behind that normal flow, the page can silently encrypt every picture in the folder during what appears to be routine processing.

From AI Hallucination to Working Proof

When researchers asked the newer DeepSeek V4 model directly for ransomware, it refused every time. Removing obvious trigger words like ransomware while keeping the same intent led to different results depending on the mode used.

In one attempt, the model described its own output as a trap combining a convincing interface with hidden harmful behavior, yet still produced the code.

Comparable attempts against other well known AI systems either failed outright or produced safer versions that avoided the risky browser feature. This does not mean other systems are immune, since a patient user could assemble the same attack from harmless looking requests.

The ransom note overlay, styled after InfernoGrabber, demanded payment in Bitcoin and threatened to leak stolen data.

InfernoGrabber ransom-note overlay (Source – Check Point)

Researchers have not seen this exact technique used in real attacks yet, but the demonstration shows the barrier to entry is now low.

Because the risk sits in how permissions are granted rather than in a flaw that can be patched, caution matters greatly. Treat any request for folder access as a decision worth pausing on.

Avoid pointing unfamiliar tools at folders holding personal photos or identity documents, and pick a temporary folder for testing instead. Established apps and trusted cloud services remain a safer choice for photo collections that matter.

Regular backups, whether offline or in the cloud, reduce the damage if files are encrypted this way. Updating Chrome and Android regularly also helps, since makers keep refining these permissions.

This case shows how artificial intelligence can turn a theoretical browser risk into a genuine, working attack technique.

Indicators of Compromise (IoCs):-

TypeIndicatorDescriptionSHA25607c39f79ab92fb21557b82283472dce1c112f577d796111fb752c3c6d84c86b5Python Flask application implementing the AI-generated in-browser ransomware sample, dubbed InfernoGrabber Malware NameInfernoGrabber v9.0Ransom-note branding displayed on the victim-facing overlay after the fake photo processing step Lure TypeFake AI avatar/photo upscaler web pageDiscord-themed phishing lure used to trick victims into granting File System Access permissions 

Note: IP addresses and domains are intentionally defanged (e.g., [.]) to prevent accidental resolution or hyperlinking. Re-fang only within controlled threat intelligence platforms such as MISP, VirusTotal, or your SIEM.

 Strengthen Your SOC by Accelerating Threat Detection & Rapid Investigations. -> Integrate ANY.RUN With Your SOC Now.
The post Browser-Only Ransomware Abuses Chrome File System Access API to Encrypt Android Photos appeared first on Cyber Security News.

Source: cybersecuritynews.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts