Bleeping Computer

Snowblind malware abuses Android security feature to bypass security

A novel Android attack vector from a piece of malware tracked as Snowblind is abusing a security feature to bypass existing anti-tampering protections in apps that handle sensitive user data.
Android

Snowblind is a new Android banking malware abusing a safety tool

Mobile app security provider Promon has uncovered a never-before-seen Android banking malware. Dubbed Snowblind, it uses a novel technique to exploit Android OS functionalities and compromise banking ...
Indiatimes

This new malware on Android can bypass security to steal data

Snowblind manipulates seccomp to hide within apps, posing a dangerous threat that requires vigilance and robust security measures for protection. According to a report by BleepingComputer, researchers ...
Linux Journal

Extending Landlocked Processes

Mickaël Salaün posted a patch to improve communication between landlocked processes. Landlock is a security module that creates an isolated "sandbox" where a process is prevented from interacting with ...
Dark Reading

'Snowblind' Tampering Technique May Drive Android Users Adrift

Hackers from Southeast Asia have turned Android's own best application security mechanism against itself, severing the link between kernel and application in order to perform any kind of tampering ...
Android

Google already had defense against Snowblind Android malware

Yesterday, a security firm published a report about a never-before-seen Android malware named Snowblind. It allegedly abuses a built-in Android safety feature to avoid detection. Its novel technique ...