{"id":24648,"date":"2025-10-27T02:15:45","date_gmt":"2025-10-26T20:45:45","guid":{"rendered":"https:\/\/vajiramandravi.com\/current-affairs\/?p=24648"},"modified":"2025-10-28T16:59:21","modified_gmt":"2025-10-28T11:29:21","slug":"snowblind-malware","status":"publish","type":"post","link":"https:\/\/vajiramandravi.com\/current-affairs\/snowblind-malware\/","title":{"rendered":"Snowblind malware"},"content":{"rendered":"<h2>About Snowblind malware:\u00a0<\/h2>\n<ul>\n<li>It is a new <strong>Android malware<\/strong> that uses a built-in Android security feature to bypass anti-tamper mechanisms and steal banking credentials.<\/li>\n<li>This malware <strong>exploits a built-in security feature<\/strong> to bypass anti-tamper protection in apps handling sensitive information.<\/li>\n<li>It works by <strong>repacking an app<\/strong> so it is unable to detect the use of accessibility features that can be used to extract sensitive information like login credentials and get remote access to the app.<\/li>\n<li>It exploits a <strong>feature called \u2018seccomp\u2019<\/strong>, which stands for \u2018<strong>secure computing\u2019<\/strong>.\n<ul>\n<li>It is part of the underlying Linux kernel and the Android operating system and is used to check applications for signs of tampering.<\/li>\n<\/ul>\n<\/li>\n<li>The security firm discovered that <strong>Snowblind injects a piece of code<\/strong> that loads before seccomp initialises the anti-tampering measures. This enables the malware to bypass security mechanisms and utilize accessibility services to remotely view the victim\u2019s screen.<\/li>\n<li>Snowblind can also <strong>disable biometric and two-factor authentication<\/strong>, two security features commonly used by banking apps to thwart unauthorised access. Like typical Android malware, Snowblind infects users who install apps from untrusted sources.<\/li>\n<\/ul>\n<p>While the security firm was unable to identify how many devices are affected by the new malware, it says that Snowblind is mostly <strong>active in Southeast Asia.<\/strong><\/p>\n<hr \/>\n<h2>Q1: What is the Raccoon Stealer?<\/h2>\n<p>Raccoon Stealer is a kind of malware that steals various data from an infected computer. It is a classic example of information-stealing malware, which cybercriminals typically use to gain possession of sensitive data saved in users\u2019 browsers and cryptocurrency wallets.<\/p>\n<p><strong>Source: <\/strong><a href=\"https:\/\/indianexpress.com\/article\/technology\/tech-news-technology\/snowblind-malware-uses-an-android-security-feature-to-bypass-security-9418579\/\" target=\"_blank\" rel=\"nofollow noopener\">Snowblind malware uses an Android security feature to bypass security<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Snowblind malware  is a new Android malware that uses a built-in Android security feature to bypass anti-tamper mechanisms and steal banking credentials.<\/p>\n","protected":false},"author":5,"featured_media":24649,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"class_list":{"0":"post-24648","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-upsc-prelims-current-affairs","8":"no-featured-image-padding"},"acf":[],"_links":{"self":[{"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/posts\/24648","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/comments?post=24648"}],"version-history":[{"count":0,"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/posts\/24648\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/media\/24649"}],"wp:attachment":[{"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/media?parent=24648"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/categories?post=24648"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vajiramandravi.com\/current-affairs\/wp-json\/wp\/v2\/tags?post=24648"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}