Team Blitz India
A NEW version of malware called the ‘Chameleon Trojan’ has recently emerged which disables biometric authentication through fingerprint and face unlock to steal the phone’s PIN, according to a recent report.
According to cybersecurity company ThreatFabric, which has been monitoring the malware since its discovery earlier this year, the Chameleon Trojan embeds itself within legitimate Android apps like Google Chrome to avoid detection and operates discreetly in the background.
A report by Bleeping Computer highlights that the creators of the malware claim the Chameleon Trojan bundles are practically invisible during runtime. This enables it to circumvent Google Protect alerts and security software on the device.
The report also reveals that on Android 12 and older versions, the malware uses the Accessibility service to gain unauthorised access. However, it operates differently on newer operating systems due to Google’s enhanced security measures. The Chameleon Trojan’s capabilities include stealing onscreen content, granting itself additional permissions, and using gestures to capture PINs and passwords entered by users to unlock the device.
Subsequently, it employs the stolen PIN to unlock the device in the background and steal sensitive information like credit card details and login credentials, according to the ThreatFabric report.
To safeguard against the Chameleon Trojan, it is crucial to avoid installing Android apps from unofficial sources. Additionally, users should refrain from enabling the ‘Accessibility service’ for unknown apps. Cybersecurity experts recommend running regular security scans and keeping Google Play Protect enabled at all times to safeguard personal information in this digital age.
