Mobile security company Skycure has announced that there’s a new form of malware in Android that can affect over half a billion devices in the world.
Called ‘Accessibility Clickjacking’, this new form of vulnerability that tricks a smartphone user by clicking on something that is not even seen on the screen. This is done by operating on a rather benign, invisible layer that would not be harmful at the first look, but in reality is an hidden accessibility activation. Once done, there will be a function to unknowingly record all your text information as you press them on your phone’s keyboard, and will be transmitted to the hacker as soon as you send them.
Here’s the scary part — the company has replicated this vulnerability among 65% of Android operating systems currently being used around the world, mostly on the KitKat platform.
Skycure says that this malware can be implemented on any device even without rooting, since it basically uses your phone’s accessibility options which has been present since Android 1.6. You can read more on the source for more information.