Dropper Service Bypassing Android Security Restrictions to Install Malware

Dropper-as-a-service (DaaS), SecuriDropper, has been identified as using a new technique to bypass Android’s security measures for payload delivery, according to ThreatFabric. By imitating a marketplace installation process, it bypasses Android 13’s restricted settings, enabling malware delivery. It has been seen delivering the SpyNote spyware family and the Ermac banking trojan.