- cross-posted to:
- technology@lemmit.online
- cross-posted to:
- technology@lemmit.online
Chameleon Android malware can turn off fingerprint unlock to steal your pin::Be careful out there.
Chameleon Android malware can turn off fingerprint unlock to steal your pin::Be careful out there.
Note that for this attack to work, you have to be on Android 11 or below (or possibly an earlier patch) as by default accessibility services aren’t allowed to draw-over or interact with elements in the settings app unless you explicitly override it in developer options.
This extends to some other areas, like for when biometric/system lock APIs are used.
So you have to enable the “draw over settings”, which is pretty deep in settings (developer options).
You kinda deserve it if you do this. Lol