The malware can also intercept text messages regardless of the fact that SMS-based two-factor authentication may be in use.
A Trojan malware dubbed “BlackRock” is disguising as an Android version of the invite-only audio chat app called Clubhouse. It is worth noting that the app has no Android version at this moment.
The cybersecurity researchers at ESET have revealed that the malware was created for the purpose of stealing the victims’ login information for a total of 458 online services.
The list of targeted apps includes all sorts of financial and shopping apps, cryptocurrency exchanges as well as social media and messaging platforms such as:
Amazon
Netflix
Outlook
eBay
Coinbase
Plus500
Cash App
BBVA
Lloyds Bank
BlackRock uses an overlay attack that allows it to steal victims’ credentials whenever one of the targeted apps is launched. Following the overlay, the user is asked to enter their login information which is a neat trick of letting the attackers gain access to their credentials.
SEE: Fake Cyberpunk 2077 Android App Delivering Ransomware
The main concern over here is the fact that the malware can also intercept text messages regardless of the fact that SMS-based two-factor authentication may be in use.
Lastly, the malicious app also requests the victim to enable accessibility services which would give the cyber-criminals direct control of the device.
As stated by ESET’s Lukas Stefanko, the website looks as real as it gets. It is “a well-executed copy of the legitimate Clubhouse website” but there are a few differences. If a user downloads an ap ..
Support the originator by clicking the read the rest link below.
