Categories
Science & Tech

The Chameleon Trojan

  • The Chameleon Trojan is a malware that compromises biometric security on Android devices.
  • Researchers have discovered a new variant of the ‘Chameleon Trojan’ virus that can disable biometric authentication systems.

The Trojan Chameleon

  • The malware’s main goal is to steal the phone’s PIN by circumventing the fingerprint and face unlock security measures.
  • To avoid detection, this malware attaches itself to legal Android applications such as Google Chrome.
  • It runs in the background and is said to be undetected during operation, avoiding Google Protect notifications and other security software.
  • To limit the danger of malware infection, users should avoid installing Android apps from unapproved sources.
  • Allowing the Accessibility service for apps that are not well-known or trusted should be avoided.
  • Regular security scans on the device can aid in the detection and mitigation of attacks.
  • It is advised that Google Play Protect be active at all times for continuous monitoring and virus protection.
  • It takes advantage of the Accessibility service on Android 12 and earlier versions, while on newer versions, it works around Google’s security constraints in various ways.
  • Users should avoid installing Android apps from untrusted sources to reduce the risk of malware infection.
  • Allowing the Accessibility service for unknown or untrusted programmes should be avoided.
  • Regular security scans on the device can help detect and mitigate assaults.
  • Google Play Protect should be kept active at all times for continuous monitoring and virus protection.

Chameleon Trojan’s Operation Mode

  • To circumvent the new restrictions, the malware presents an HTML page directing users to enable the app’s Accessibility service, jeopardising device security.
  • Once activated, it records on-screen material, navigates via gestures, and steals PINs and passwords before accessing more sensitive data such as credit card information and login credentials.
  • The malware also monitors app usage trends in order to time its attacks when the device is most likely to be idle.

Chameleon protection Trojan

  • To limit the danger of malware infection, users should avoid installing Android apps from unapproved sources.
  • Allowing the Accessibility service for apps that are not well-known or trusted should be avoided.
  • Regular security scans on the device can aid in the detection and mitigation of attacks.
  • It is advised that Google Play Protect be active at all times for continuous monitoring and virus protection.
Source: https://indianexpress.com/article/technology/tech-news-technology/chameleon-trojan-steal-android-password-9082917/
JOIN OUR NEWSLETTER
And get notified everytime we publish a new blog post.
By subscribing, you agree with our privacy policy and our terms of service.