The Chhattisgarh

Tag: Malware

  • Snowblind Malware Explained: Know How It Steals Bank Data From Android Devices |

    New Delhi: Mobile banking offers incredible convenience and allows users to manage their finances on the go. However, this convenience comes with increasing security risks. A new malware known as ‘Snowblind’ has emerged which specifically targets Android users to steal their banking credentials.

    What exactly is Snowblind Android malware?

    Snowblind is a type of malware designed to attack Android devices with the intent of stealing baking information. This malicious software is capable of capturing your banking login credentials and perform unauthorised transactions without your consent, identified by cybersecurity firm Promon. (Also Read: Vodafone Idea Joins Jio, Airtel In Major Tariff Hike On Postpaid And Prepaid Plans : Check New Prices)

    How does it infiltrate your system?

    Snowblind typically infiltrates devices when users unknowingly download a seemingly legitimate app that has been repackaged with malicious code. Security firm Promon explains that the malware exploits accessibility features within the app which allows it to extract sensitive information such as login credentials and gain remote access to the affected application. (Also Read: TRAI Modifies Rules For New SIM Replacement Under Mobile Number Portability)

    How does Snowblind malware operate?

    Snowblind differs from typical Android malware by bypassing the platform’s security mechanisms using a feature called “seccomp” in the Linux kernel.  This feature is intended to check for tampering.

    Snowblind injects code into the system before seccomp activates. This technique enables it to bypass security checks and utilize accessibility services to monitor your screen and facilitate the theft of login information or disruption of your banking app sessions.

    As a result, Snowblind can disable biometric and two-factor authentication (2FA) protections and increase the risk of fraud and identity theft. The malware operates silently in the background, potentially remaining undetected on your device.

  • Android Users Beware: ‘Chameleon’ Malware Poses Serious Threat – Read Details |

    New Delhi: In the ever-evolving landscape of online threats, a new menace has emerged targeting Android users. Dubbed ‘Chameleon,’ this malware goes beyond the typical deceptive tactics, disguising itself as trusted apps like Google Chrome.

    The danger lies not only in its ability to breach device security but also in its sinister mission to pilfer sensitive financial data, including crucial bank account passwords. (Also Read: Bengaluru Engineer Falls Victim To Bitcoin Investment Scam; Loses 95 Lakhs)

    Recent research by ThreatFabric reveals that ‘Chameleon’ is not a newcomer; it has been circulating for approximately a year. However, recent enhancements by cybercriminals have elevated its sophistication, employing an HTML trick that easily bypasses a user’s device security, granting access to vital information. (Also Read: Home Loan Benefits For Women In India: Check What Advantage They Can Avail)

    What sets ‘Chameleon’ apart is its distribution method through Zombinder, enabling it to linger undetected while users innocently engage with everyday apps like Google Chrome. Alarmingly, this malware can effortlessly circumvent device biometrics, as highlighted in the findings by ThreatFabric.

    The potential consequences are severe. ‘Chameleon’ not only steals personal data but leverages it to gain unauthorized entry to bank accounts, leading to financial losses and compromising personal information.

    To safeguard against this threat and avoid the risk of losing both money and digital identity, users are urged to exercise extreme caution.

    The primary defense against such malware is to refrain from downloading apps and APKs from unverified sources, particularly those promising premium apps for free.

    Downloading from random websites poses long-term challenges and can result in more harm than good. Therefore, it is crucial to avoid downloading any official app from unfamiliar links or suspicious-looking websites.

    An additional layer of protection comes from enabling Google’s Play Protect, a built-in tool that significantly contributes to the safety of Android devices. By taking these precautions, users can fortify their defenses against the evolving threat landscape and ensure a safer online experience.