Skip to main content
  1. Home
  2. Mobile
  3. News

New Malware, Accessibility Clickjacking, affects 65% of Android devices

By

google android one u s stock phone smartphone
In our mobile-first digital age, we operate under the assumption that our smartphones are safe — the alternative is simply too terrifying to consider, especially considering the vast amount of information and personal data contained on these devices. But the time for ignorance has long since passed, and at the RSA conference in San Francisco this past week, mobile security company Skycure co-founders Adi Sharabani and Yair Amit revealed that a new kind of malware puts a stunning 500,000,000 Android phones at risk. That’s the equivalent of 65 percent of Android devices on the market today.

The issue of malware on Android devices is nothing new, but this latest form may be the most insidious. Known as “accessibility clickjacking,” it effectively cedes control of your phone to a malicious hacker.

Recommended Videos

As Skycure explains, “Clickjacking is a term for a malicious UI redressing technique that tricks a victim into clicking on an element that is different than the one the victim believes to be clicking on.” In essence, “malicious websites” appear with what seem to be harmless webpages, but these sites are in fact overlayed with another attacked service. And Skycure notes, “Clickjacking is not a theoretical threat — just a month ago, a ransomware named Android.Lockdroid.E that utilized Android Clickjacking to gain Admin rights was found by Symantec.”

Related

So just what is the extent of the damage made possible by way of this new malware? Experts claim that clickjacking could give hackers access to “all text-based sensitive information on an infected Android device, as well as take automated actions via other apps or the operating system, without the victim’s consent.” This includes emails, text messages, messaging app data, information from CRM apps, and much more.

The worst part, perhaps, is the sheer number of users who may be susceptible to this sort of attack. If you’re running anything from Android 2.2 Froyo to Android 4.4 KitKat on your phone, you could fall victim to clickjacking. So upgrade to Lollipop or above ASAP, and protect yourself from the latest in malware.

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
These 80+ apps could be running adware on your iPhone or Android device
Illustration of an infected iPhone

Cybersecurity company Human has uncovered another adware campaign engaging in ad fraud that is targeting iOS and Android devices. In the simplest terms, ad fraud allows a bad actor to either visibly spam an app with ads, or to manipulate the code in such a way that the ads are invisible to the user while the bad actor extracts advertising money from a marketer.

In each iteration, it’s fraudulent. Ad fraud has been widespread in the industry for a while, and the latest investigation uncovered a cache of over 75 Android apps listed in the Google Play Store and nearly a dozen apps on Apple’s App Store that are engaged in various forms of ad fraud.

Read more
New malware can steal your credit card details — and it’s spreading fast
An individual surrounded by several computers typing on a laptop.

A new, highly dangerous malware called "Erbium" has been making the rounds over the last couple of months, and it's highly likely that it will spread to new channels.

Erbium is an information-stealing tool that targets passwords, credit card information, cookies, cryptocurrency wallets, and more. Unfortunately, it's widely available, which means that it could be used in new ways in the future.

Read more
Malware has a terrible new way to get to your computer
A villager looks at a sunset.

You've heard of malware spreading through spammy emails and mysterious links on strange websites. But now there's a new avenue of attack for bad actors to take -- and it's via Minecraft. Yes, you read it correctly. The open-world building game loved by seven-year-olds around the globe is quickly becoming a favorite method for spreading malware.

As reported by Bleeping Computer, Kaspersky Labs researched the phenomena from July 2021 until July 2022, and it found that in-game malware accounted for a significant amount of the malware that was spread in that time. Although there was a 30% drop in malware attacks in that year when compared to 2020, the amount of gaming-related malware actually increased. Minecraft on PC was the preferred vector.

Read more