Malware attacks Current Affairs - 2020

BlackRock Malware steals credit card details, password from 337 android apps

A new android malware has been discovered that steals data such as credit card details, password from 337 applications. This included some of the popular apps such as Amazon, Gmail, Uber, Netflix and more.

Highlights

The malware was discovered by a mobile security firm Threatfabric. The malware is being distributed as fake Google update packages offered on third party websites.

The malware is capable of performing intrusive operations such as Perform SMS floods, start specific apps, show custom push notifications, perform SMS floods, sabotage mobile antivirus apps.

About the malware

The malware is based on the leaked source code of another malware Xerxes. Again, xerxes is based on the strains of other malwares.

Blackrock is completely enhanced with stealing passwords and credit card details. It collects data through overlays.

Working of the malware

The Malware asks for credit card setails and login credentials before the user enters the app. It asks for phone’s accessibility feature. It then uses Android DPC to access the admin.

What is Event Bolt Malware in news recently?

The Computer Emergency Response of Team (CERT) of India has issued warning against a new malware called “EventBot”. The malware according to CERT steals personal financial information from Android phone users.

Highlights

The Eventbolt malware that is spreading is a Trojan. It cheats victims secretly attacking computer or phone operating system. Currently, the malware is capable of targeting more than 200 different financial applications. The malware has already looted crypto currency wallets, bank accounts in Europe and US. It targets money-transfer services, financial applications.

Current Scenario

According to CERT, the malware has currently attacked financial applications such as Paypal, UniCredit, HSBC, Coinbase, TrasnferWise, etc.

CERT

Cert operates under Ministry of Electronics and Information Technology. It is the nodal agency in India that deals with hacking, cyber security threats, phishing, etc. CERT represents India at the Shanghai Cooperation Organization MoU signed by India. Around 7 countries signed this MoU. This includes Australia, Korea, Canada, Singapore, Malaysia, Japan, India and Uzbekistan.

Apart from International measures, CERT has been carrying out several initiatives within India. This mainly includes “Cyber Swachhta Kendra”

Cyber Swachhta Kendra

The Cyber Swachhta Kendra aims to create secure cyber space by detecting botnet infections within the country. It is operated by CERT according to the provision in Section 70B of Information Technology Act, 2000.