Chameleon Android Malware Can Bypass Biometric Security

Chameleon

Online fraud detection company ThreatFabric reports that a new version of the Chameleon Android banking trojan has increased its targeting area and added new bypass capabilities.

The malware, which has been active since early 2023, was first detected affecting mobile banking applications in Poland and Australia. However, it has since spread to the UK and Italy. ThreatFabric notes that when Chameleon was first discovered, it was still in development because it was using several loggers, had limited malicious functionality, and contained a number of unused commands.

By using a proxy function and abusing Accessibility Services, it could act as the victim’s representative, enabling attackers to take control of accounts (ATO).

Read More: Chameleon Android Malware Can Bypass Biometric Security

For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.