Why is it in the news?

• Cybersecurity researchers have identified a powerful variant of the ‘Chameleon Trojan’ malware, posing a significant threat to Android device users.

About Chameleon Trojan Malware

• Capable of infiltrating devices with minimal detection, particularly targeting biometric authentication features like fingerprint security and face unlock.
• The malware has the ability to elude detection by common malware scanning applications.
• Attaches itself to legitimate Android apps such as Google Chrome to remain undetected, operating in the background.
• Chameleon Trojan bundles operate stealthily at runtime, bypassing Google Protect alerts and security software on the device.
• Adapts tactics based on the Android version targeted, exploiting the Accessibility service in older versions and using deceptive HTML pages in recent versions.
• Steals on-screen content, gains additional permissions, and captures PINs and passwords entered by users to unlock their devices.
• Uses stolen PINs to unlock devices in the background, facilitating the theft of sensitive information like credit card passwords and login credentials.
• Collects information on users’ app usage habits to launch attacks when the device is least likely to be in use.

Measure to be taken

• Crucial to refrain from installing Android apps from unofficial sources.
• Users should exercise caution and avoid enabling the ‘Accessibility service’ for unknown or untrusted apps.
• Install and regularly use trusted anti-virus software to conduct security scans and identify potential threats.