Like most other variants of ransomware, VaultCrypt encrypts files, but instead of directly asking for a ransom, it directs users to their so called "customer support" website.
Almost 50% of all Android devices are vulnerable to an Installer hijack. This may lead to unauthorized installation of adware or malware.
Google discovered that several domains have been issuing unauthorized SSL certificates, which were misused to insert a man-in-the middle proxy. Chrome and Firefox users are safe.