●BlackRock : A new Android Malware
•BlackRock is a banking Trojan and said to be an enhanced version of existing Xerxes malware which itself is a variant of the LokiBot Android trojan.
•[A trojan is any type of malicious program disguised as a legitimate one. Often, they are designed to steal sensitive information (login credentials, account numbers, financial information, credit card information, and the like) from users.]
•It collects user information by abusing the Accessibility Service of Android and overlaying a fake screen on top of a genuine app. It uses Android DPC (Device Policy Controller) to provide access to other permissions.
•It surfaces as a google update
•It makes antivirus applications useless
•The malware is said to have the design to overlay attacks, send, spam, and steal SMS messages as well as lock the victim in the launcher activity. It can also act as a keylogger (i.e. track the keys struck on a keyboard), which essentially could help a hacker to acquire financial information.
•Despite being a banking Trojan, BlackRock is said to target non-financial apps.
•It targets a total of 337 apps, which is significantly higher than any of the already known malicious code.