Android smartphone users should be aware that your credit card information is at risk

A team of security researchers has discovered a new Android malware that affects sections of social, communication and dating applications. The name of the malware is BlackRock and a banking Trojan, derived from the code of existing Xerox malware (virus). However, despite being a banking Trojan, it is known to affect non-financial applications. It first pretends to be a Google update, and the app hides its icon from the drawer and starts working in the background as soon as users get permission.

Analysts from the Netherlands-based threat intelligence agency Threatfabric Accordingly, BlackRock was first spotted in the Android world in May. It is capable of stealing credit card information from users.

Although the capabilities of BlackRock Malware are similar to those of Android Banking Trojan, it still affects a total of 337 applications, far more than the current known Trojan.

This malware is designed to perform tasks such as overlay attacks, spam, SMS theft and locking the victim in the launcher. It also acts as a keylogger that helps hackers get user financial information. Not only that, but researchers have also discovered that this malware has the ability to protect antiviruses like Avast, AVG, BitDefender, Asset, Trend Micro, Kaspersky or MacFi.

According to Threatfabric, the BlackRock malware uses an accessibility service included in Android to keep a duplicate layer attached to the original application and thus retrieves information entered by users. It is specially designed to get the user’s credit card information.