Chameleon malware has emerged as a new threat in digital security systems. The research team from ThreatFabric stated that this new type of malware works by tricking users into activating accessibility services on smartphones.
This malware disguises itself as a legitimate Android app, then displays an HTML page that directs its victims to enable accessibility features. By activating accessibility services, the Chameleon malware tricks users by automatically changing the security key from biometrics or fingerprints to a PIN lock on the cellphone. To avoid this malware attack, smartphone users must be careful when installing and using applications from unofficial or untrusted sources.
Usually the Chameleon malware is distributed via APK files that come from unofficial sources. So cellphone users must be careful and not careless when downloading and installing applications outside of official sources. For example, when you install an application from a website or online forum. Cellphone users should also not carelessly activate accessibility services for unknown applications. So make sure to use applications from trusted sources, especially using banking applications.
