Security
Now Reading
New BlackRock Malware is Stealing Credit Card Info and Passwords from Over 300 Apps
Contents
0

New BlackRock Malware is Stealing Credit Card Info and Passwords from Over 300 Apps

by Aiman MaulanaJuly 22, 2020
What's your reaction?
TMM
0%
Me Gusta
100%
Potato
0%
Sad Reacc
0%
Angery
0%

New BlackRock Malware is Stealing Credit Card Info and Passwords from Over 300 Apps

It seems like the internet is growing to be a more and more dangerous place as more threats start to appear. Now, there is a new Android malware called BlackRock malware that you need to take note of as it can steal your passwords and credit card details from over 300 apps.

How Does The BlackRock Malware Work?

New BlackRock Malware is Stealing Credit Card Info and Passwords from Over 300 Apps 19

The BlackRock malware is said to have data theft capabilities and works similarly to other Android malwares. It’s based on a leaked source code for one more malware strain Xerxes, which is also based on other malware strains. This particular one however has boosted capabilities and is capable of stealing passwords and credit card information from over 300 apps.

How it works is that the BlackRock malware will send out a prompt requesting users to enter payment details, which is usually your credit card, after stealing your login credentials. It will setup an overlay and will trigger when it detects a user interacting with a legal app. There will be a fake window on top of the actual app itself that will be requesting the details. This is how users can get tricked by it. It can work on 337 apps, including Amazon, Uber, Gmail, Netflix, and many more.

It is said that the malware stems from fake Google update packages available on 3rd party websites. It will require permissions, particularly on Accessibility, before it can do anything. If it’s given the permission, it will slowly give itself permission to access other features as well. This includes admin access via Android DPC.

Apart from what has been mentioned, the malware is also capable of the following things:

  • Spam contacts with predefined SMS
  • Log key taps (keylogger functionality)
  • Intercept SMS messages
  • Show custom push notifications
  • Perform SMS floods
  • Sabotage mobile antivirus apps
  • Intercept SMS messages
  • Start specific apps, and more

If you open an app it suddenly requests for your credit card details or private data, be extra careful. It might just be the BlackRock malware. Don’t simply give permissions to any app you download and make sure you know what you’re giving permission for.

Source

Pokdepinion: The internet is a dangerous place regardless of which device you use. All you can do is take precautionary steps to avoid any potential disasters on your end. Better safe than sorry.

About The Author
Aiman Maulana
Jack of all trades, master of none, but oftentimes better than a master of one. YouTuber, video editor, tech head, and a wizard of gaming. What's up? :)