Sneaky Chameleon Banking Malware Defeats Biometric Security On Android, Steals PINs

The Chameleon Android malware, initially observed in spring, has grown more pernicious. Now, it uses fake system dialogs to access the Android Accessibility service, which allows it to change security settings and steal data. Initially mimicking crypto, banking, and government apps, Chameleon now uses the Zombinder service to attach itself to legitimate apps. It can also disable biometric unlock methods, recording user PINs and passwords and subsequently unlocking devices to steal data. To stay safe, experts suggest maintaining Google Protect features and only downloading apps from official sources.