#Blackrock Android Malware
#What is Cybercrime?
*Cybercrime is any criminal activity that involves a computer, networked device, or a network. Most of the cybercrime is carried out in order to generate profit for the cybercriminals, some cybercrimes are carried out against computers or devices directly to damage or disable them, while others use computers or network to spread malware, illegal information, images or other material.
#Types of Cybercrimes.
*Email and internet fraud.
*Personal identity fraud.
*Theft of financial or card payment data.
*Theft and sale of corporate data.
*Cyberextortion.
*Ransomware attacks.
*Cryptojacking.
*Cyberespionage.
#Most of the cybercrime falls under two main categories
*Criminal activity that targets.
*Criminal activity that uses computers to commit other crimes.
#Cybercriminals may infect computers with viruses and malware to damage devices or stop them from working. They may also use malware to delete or steal data.
#What is Blackrock malware?
*Blackrock malware is based on the leaked source code of the Xerxes banking malware, which itself is a strain of the LokiBot Android banking Trojan
*It can perform overlay attacks, send, spam & steal SMS messages, steal and hide notifications, act as a keylogger, among other things.
#How does it work?
*When the malware is the first launched on the device, it starts by hiding its icon from the app drawer, making it invisible to the end-user. It then asks the victim for the accessibility of service privileges.
*On getting the requested privileges, Blackrock starts granting itself additional permission required to fully function without having to interact anymore with the victim. The bot is then ready to receive commands from the server and execute overlay attacks.
#What is the security concern?
*Netherlands-based computer security firm ThreatFabric has alerted about a new Android malware called Blackrock malware. It can steal pieces of information such as user credentials and credit card details from about 337 smartphone applications, including Amazon, Facebook, Instagram, and Gmail.
#Which applications does it target?
*Blackrock targeted list contains several social networking, communication, and dating applications, many of which haven't been observed to be targeted by other existing banking Trojans. Mostly not related to financial institutions, the new targets are overlayed to steal credit card details.
#It deflects the usage of antivirus software.
*As per ThreatFabric, the Trojan redirects the victim to the device's Home screen if they try to start or use antivirus software including Avast, AVG, McAfee, Avira, etc. By doing so, the Trojan tries to avoid letting the victim remove it from the device.
New Dangerous Android Malware
Reviewed by Rahul Basodiya
on
July 22, 2020
Rating:
No comments: