Font size:
Print
Emerging Threat: Snowblind Banking Malware
Emerging Threat: Snowblind Banking Malware
Context:
A new banking malware called ‘Snowblind’ is targeting Android users to steal banking credentials.
About Snowblind Malware:
- Snowblind exploits a built-in security feature called ‘seccomp’ to bypass anti-tamper protection in apps handling sensitive information.
- It repackages apps to avoid detection of accessibility features, allowing it to extract login credentials and gain remote access.
- Snowblind injects code to evade seccomp’s security measures, enabling it to use accessibility services to monitor victims’ screens remotely.
- The malware can disable biometric and two-factor authentication, typically used by banking apps for enhanced security.
- Snowblind infects users who download apps from untrusted sources.
- It is predominantly active in Southeast Asia, according to security firm Promon.
What is Malware:
- Malware, short for malicious software, is created by cybercriminals (often referred to as hackers) to infiltrate computer systems, steal data, and potentially cause damage.
- It includes various types such as viruses, worms, Trojan horses, spyware, adware, and ransomware.
- India has been hit by several recent cyber attacks, causing disruptions across critical services and sparking widespread concern:
- AIIMS Attack In 2023, Telangana and Andhra Pradesh Power Utilities, UHBVN Ransomware Attack, WannaCry, Mirai Botnet Malware Attack,Petya, BSNL Malware Attack.
