From UPSC perspective, the following things are important :
Prelims level : Malwares
Mains level : Data privacy issues
Various security firms have alerted about new malware, called BlackRock.
Try this question from CSP 2018:
Q.The terms ‘WannaCry, Petya, Eternal Blue’ sometimes mentioned news recently are related to
(d) Mini satellites
- BlackRock isn’t exactly a new malware. In fact, it is based on the leaked source code of the Xeres malware, itself derived from a malware called LokiBot.
- The only big difference between BlackRock and other Android banking trojans is that it can target more apps than previous malwares.
How does it work?
- BlackRock works like most Android malware. Once installed on a phone, it monitors the targeted app.
- When the user enters the login and/or credit card details, the malware sends the information to a server.
- BlackRock uses the phone’s Accessibility feature and then uses an Android DPC (device policy controller) to provide access to other permissions.
- It can be used to send and steal SMS messages, hide notifications, keylogging, AV detection, and much more.
- The new malware can steal information like passwords and credit card information from about 377 smartphone applications, including Amazon, Facebook, and Gmail.
- It is so powerful that it makes antivirus applications useless.