Android malware often bypasses Google’s app review process. A few days ago, the Joker was informed about Android malware, while now an Android malware has been identified that was stealing information about bank accounts from apps like Gmail, Amazon, Netflix and Uber.
This malware has victimized a total of 337 Android apps. This new Android malware that steals banking data is named BlackRock. Mobile security firm ThreatFabric was first informed about this.
How did BlackRock steal users’ data?
BlackRock malware used to steal data just like any common malware. This malware strain was based on the source code of Xerxes. This malware used to steal users’ data during login in an app. For example, if you are logging in to a banking app in your phone by entering a password and user ID, then this malware used to record it.
The technique with which malware used to steal data is called overlays. Under this technique, malware apps login with users on a fake web page, while the user considers it to be the original page. This malware used to take access from users to messaging, cameras, galleries, etc. This malware also used to give fake Google update notifications to the user.
What could BlackRock malware do?
- SMS change
- Fake SMS delivery
- Contact spam
- Able to open any app
- Able to record typing keyboard
- Show bogus push notifications
- Mobile antivirus app ads show