Chameleon Android malware can turn off fingerprint unlock to steal your pin::Be careful out there.

  • rush@lemm.ee
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    1 year ago

    Note that for this attack to work, you have to be on Android 11 or below (or possibly an earlier patch) as by default accessibility services aren’t allowed to draw-over or interact with elements in the settings app unless you explicitly override it in developer options.

    This extends to some other areas, like for when biometric/system lock APIs are used.

    • BearOfaTime@lemm.ee
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      So you have to enable the “draw over settings”, which is pretty deep in settings (developer options).

      You kinda deserve it if you do this. Lol