Hello folks,
Aswe try and get some stuff sent out while I was gone in an all day meeting, you’ll want to have this one.
No, the meeting was not blinding, but the article is blinding Android users by what it does.
This does not abuse the accessibility component that drives things like screen reading and magnification, but it does abuse something called seccomp which stands for secure computer.
While accessiblity services have access to the entire system by nature so they can help a disabled person use it, this piece of software repackages itself as something you may want to gain access to the secure component and steal info if I’m understanding things correctly.
The article covers attack scenarios and how it abuses this secure computing environment of Android. The secure component was first introduced in Android 8, otherwise known as oreo.
To read the entire article, I would suggest you read Snowblind malware abuses Android security feature to bypass security for complete details.
Have fun with this one!