EDITOR: There is a new malware coming in the android platform, It can steal your credit card net banking, and debit card details.
WHAT IS A MALWARE?
Malware is the collective name for a number of malicious software variants, including viruses, ransomware and spyware. Shorthand for malicious software, malware typically consists of code developed by cyberattackers, designed to cause extensive damage to data and systems or to gain unauthorized access to a network. Malware is typically delivered in the form of a link or file over email and requires the user to click on the link or open the file to execute the malware.BlackRock can steal information like passwords and credit card information from about 377 smartphone applications, including Amazon, Facebook, Gmail and Tinder.Since these are very popular apps, the threat posed by the BlackRock Android malware is quite high.
IS IT A NEW MALWARE?
BlackRock isn’t exactly a new malware. In fact, it is based on the leaked source code of the Xeres malware, itself derived from malware called LokiBot.
WHAT TYPE OF MALWARE IS BLACKROCK?
It is a Trojan. Just like Greek soldiers hid in a giant horse to deliver their attack, this type of malware hides within or disguises itself as legitimate software.Acting discretely, it will breach security by creating backdoors that give other malware variants easy access.
HOW DOES BLACKROCK ANDROID MALWARE WORK?
BlackRock works like most Android malware.Once installed on a phone, it monitors the targeted app.When the user enters the login and/or credit card details, the malware sends the information to a server.When the malware is first launched on the device, it will start by hiding its icon from the app drawer, making it invisible to the end-user.As second step it asks the victim for the Accessibility Service privileges.
FEATURES OF BLACKROCK
BlackRock can perform other ‘intrusive’ operations like - - Overlaying: Dynamic (Local injects obtained from C2) - Keylogging - SMS harvesting: SMS listing - SMS harvesting: SMS forwarding - Device info collection - SMS: Sending - Remote actions: Screen-locking - Self-protection: Hiding the app icon - Self-protection: Preventing removal - Notifications collection - Grant permissions
AREN’T ANTIVIRUS APPS USEFUL?
The new malware is so powerful that it makes antivirus applications useless. “The Trojan will redirect the victim to the HOME screen of the device if the victims tries to start or use antivirus software as per a specific list including-Avast, AVG, Bitdefender, ESET, Symantec, Trend Micro, Kaspersky, McAfee, Avira.
HOW TO PROTECT YOUR PHONE FROM BLACKROCK?
Right now, the trojan is yet to be spotted on Google Play Store and is distributed as a fake Google Update on third-party stores. Your best bet is to download apps only from the Google Play Stores, use strong passwords, beware of spam and phishing emails.
