- The Chameleon Trojan is a malware that compromises biometric security on Android devices.
- Researchers have discovered a new variant of the ‘Chameleon Trojan’ virus that can disable biometric authentication systems.
The Trojan Chameleon
- The malware’s main goal is to steal the phone’s PIN by circumventing the fingerprint and face unlock security measures.
- To avoid detection, this malware attaches itself to legal Android applications such as Google Chrome.
- It runs in the background and is said to be undetected during operation, avoiding Google Protect notifications and other security software.
- To limit the danger of malware infection, users should avoid installing Android apps from unapproved sources.
- Allowing the Accessibility service for apps that are not well-known or trusted should be avoided.
- Regular security scans on the device can aid in the detection and mitigation of attacks.
- It is advised that Google Play Protect be active at all times for continuous monitoring and virus protection.
- It takes advantage of the Accessibility service on Android 12 and earlier versions, while on newer versions, it works around Google’s security constraints in various ways.
- Users should avoid installing Android apps from untrusted sources to reduce the risk of malware infection.
- Allowing the Accessibility service for unknown or untrusted programmes should be avoided.
- Regular security scans on the device can help detect and mitigate assaults.
- Google Play Protect should be kept active at all times for continuous monitoring and virus protection.
Chameleon Trojan’s Operation Mode
- To circumvent the new restrictions, the malware presents an HTML page directing users to enable the app’s Accessibility service, jeopardising device security.
- Once activated, it records on-screen material, navigates via gestures, and steals PINs and passwords before accessing more sensitive data such as credit card information and login credentials.
- The malware also monitors app usage trends in order to time its attacks when the device is most likely to be idle.
Chameleon protection Trojan
- To limit the danger of malware infection, users should avoid installing Android apps from unapproved sources.
- Allowing the Accessibility service for apps that are not well-known or trusted should be avoided.
- Regular security scans on the device can aid in the detection and mitigation of attacks.
- It is advised that Google Play Protect be active at all times for continuous monitoring and virus protection.
Source: https://indianexpress.com/article/technology/tech-news-technology/chameleon-trojan-steal-android-password-9082917/