Cyber Security – CERTs, Policy, etc

BlackRock Android Malware

Note4Students

From UPSC perspective, the following things are important :

Prelims level : Malwares

Mains level : Data privacy issues

Various security firms have alerted about new malware, called BlackRock.

Try this question from CSP 2018:

Q.The terms ‘WannaCry, Petya, Eternal Blue’ sometimes mentioned news recently are related to

(a) Exoplanets

(b) Cryptocurrency

(c) Cyberattacks

(d) Mini satellites

BlackRock

  • BlackRock isn’t exactly a new malware. In fact, it is based on the leaked source code of the Xeres malware, itself derived from a malware called LokiBot.
  • The only big difference between BlackRock and other Android banking trojans is that it can target more apps than previous malwares.

How does it work?

  • BlackRock works like most Android malware. Once installed on a phone, it monitors the targeted app.
  • When the user enters the login and/or credit card details, the malware sends the information to a server.
  • BlackRock uses the phone’s Accessibility feature and then uses an Android DPC (device policy controller) to provide access to other permissions.
  • It can be used to send and steal SMS messages, hide notifications, keylogging, AV detection, and much more.

Threats posed

  • The new malware can steal information like passwords and credit card information from about 377 smartphone applications, including Amazon, Facebook, and Gmail.
  • It is so powerful that it makes antivirus applications useless.
Subscribe
Notify of
0 Comments
Inline Feedbacks
View all comments