The Chhattisgarh

Tag: Android Malware

  • Snowblind Malware Explained: Know How It Steals Bank Data From Android Devices |

    New Delhi: Mobile banking offers incredible convenience and allows users to manage their finances on the go. However, this convenience comes with increasing security risks. A new malware known as ‘Snowblind’ has emerged which specifically targets Android users to steal their banking credentials.

    What exactly is Snowblind Android malware?

    Snowblind is a type of malware designed to attack Android devices with the intent of stealing baking information. This malicious software is capable of capturing your banking login credentials and perform unauthorised transactions without your consent, identified by cybersecurity firm Promon. (Also Read: Vodafone Idea Joins Jio, Airtel In Major Tariff Hike On Postpaid And Prepaid Plans : Check New Prices)

    How does it infiltrate your system?

    Snowblind typically infiltrates devices when users unknowingly download a seemingly legitimate app that has been repackaged with malicious code. Security firm Promon explains that the malware exploits accessibility features within the app which allows it to extract sensitive information such as login credentials and gain remote access to the affected application. (Also Read: TRAI Modifies Rules For New SIM Replacement Under Mobile Number Portability)

    How does Snowblind malware operate?

    Snowblind differs from typical Android malware by bypassing the platform’s security mechanisms using a feature called “seccomp” in the Linux kernel.  This feature is intended to check for tampering.

    Snowblind injects code into the system before seccomp activates. This technique enables it to bypass security checks and utilize accessibility services to monitor your screen and facilitate the theft of login information or disruption of your banking app sessions.

    As a result, Snowblind can disable biometric and two-factor authentication (2FA) protections and increase the risk of fraud and identity theft. The malware operates silently in the background, potentially remaining undetected on your device.

  • Android Users Beware! Xamalicious Malware Threatens Thousands Through Play Store Apps |

    New Delhi: Android users are facing a new threat as Xamalicious malware wreaks havoc on unsuspecting devices. The latest report from McAfee reveals that over 300,000 devices are at immediate risk due to around 14 malicious Android apps found on the Play Store. Although Google has removed these apps, users who have already installed them remain vulnerable to potential intrusion and data leaks.

    The Xamalicious issue has been lingering since mid-2020, posing a persistent threat to those who have not scanned their devices for the malware. (Also Read: How Much Monthly Interest Will You Earn For Rs 1 Lakh FD Across Different Tenors? Check Calculator)

    While the removal of apps from the Play Store is a positive step, users must exercise caution in how they use their phones to prevent any compromise of their sensitive information. (Also Read: Ratan Tata’s 86th Birthday: Check Out 5 Interesting Facts About Industrialist)

    Among the popular apps carrying the Xamalicious threat are:

    Essential Horoscope for Android – 100,000 installs

    3D Skin Editor for PE Minecraft – 100,000 installs

    Logo Maker Pro – 100,000 installs

    Auto Click Repeater – 10,000 installs

    Count Easy Calorie Calculator – 10,000 installs

    Dots: One Line Connector – 10,000 installs

    Sound Volume Extender – 5,000 installs

    McAfee warns that more than 10 apps with Xamalicious may still be circulating through third-party app stores via APK files beyond Google’s control.

    Xamalicious poses serious concerns, as an infected device becomes vulnerable to backdoor access, allowing the malware to install other dangerous apps.

    The malware can also extract details about the phone, SIM, and firmware, as well as collect location data, IP addresses, and even alter the root status of the Android phone.

    To avoid falling victim to Xamalicious:

    Never download apps from third-party stores. If you choose to do so, carefully read reviews, check ratings, and conduct thorough research on the apps.
    Download only genuine apps from the Play Store to minimize the risk of malware threats.

  • Android Users Beware: ‘Chameleon’ Malware Poses Serious Threat – Read Details |

    New Delhi: In the ever-evolving landscape of online threats, a new menace has emerged targeting Android users. Dubbed ‘Chameleon,’ this malware goes beyond the typical deceptive tactics, disguising itself as trusted apps like Google Chrome.

    The danger lies not only in its ability to breach device security but also in its sinister mission to pilfer sensitive financial data, including crucial bank account passwords. (Also Read: Bengaluru Engineer Falls Victim To Bitcoin Investment Scam; Loses 95 Lakhs)

    Recent research by ThreatFabric reveals that ‘Chameleon’ is not a newcomer; it has been circulating for approximately a year. However, recent enhancements by cybercriminals have elevated its sophistication, employing an HTML trick that easily bypasses a user’s device security, granting access to vital information. (Also Read: Home Loan Benefits For Women In India: Check What Advantage They Can Avail)

    What sets ‘Chameleon’ apart is its distribution method through Zombinder, enabling it to linger undetected while users innocently engage with everyday apps like Google Chrome. Alarmingly, this malware can effortlessly circumvent device biometrics, as highlighted in the findings by ThreatFabric.

    The potential consequences are severe. ‘Chameleon’ not only steals personal data but leverages it to gain unauthorized entry to bank accounts, leading to financial losses and compromising personal information.

    To safeguard against this threat and avoid the risk of losing both money and digital identity, users are urged to exercise extreme caution.

    The primary defense against such malware is to refrain from downloading apps and APKs from unverified sources, particularly those promising premium apps for free.

    Downloading from random websites poses long-term challenges and can result in more harm than good. Therefore, it is crucial to avoid downloading any official app from unfamiliar links or suspicious-looking websites.

    An additional layer of protection comes from enabling Google’s Play Protect, a built-in tool that significantly contributes to the safety of Android devices. By taking these precautions, users can fortify their defenses against the evolving threat landscape and ensure a safer online experience.