Apps designed to track COVID-19 might be full of ransomware, report says