all InfoSec news
Snowblind Abuses Android seccomp Sandbox To Bypass Security Mechanisms
GBHackers On Security gbhackers.com
A new Android banking trojan named Snowblind was discovered that exploits the Linux kernel feature seccomp, traditionally used for security, which installs a seccomp filter to intercept system calls and bypasses anti-tampering mechanisms in apps, even those with strong obfuscation and integrity checks. The novel attack vector allows the malware to steal login credentials, bypass […]
The post Snowblind Abuses Android seccomp Sandbox To Bypass Security Mechanisms appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News …
android android banking trojan android malware apps attack attack vector banking banking trojan bypass cve exploits feature filter integrity intercept kernel linux linux kernel malware mechanisms novel obfuscation sandbox seccomp security security bypass snowblind system system calls tampering trojan vulnerability