This is a new threat known as SecuriDropper. It is based on DaaS, or dropper-as-a-service, and what it seeks is to bypass the restricted configuration function that exists in Android. In other words, it seeks to have the ability to install malware and have access to the accessibility services available on Android.
Android devices in danger
It should be mentioned that this security feature has existed since Android 13. The protection consists of preventing applications installed through APK files, which are the ones we install outside of Google Play, can access sensitive functions of the accessibility settings. This could trigger access to notifications, for example.
Now, with these attacks, cybercriminals can abuse that feature and be able to capture text on the screen, have additional permissions or browse remotely. To achieve this, the trick is to use the Installation API which is based on APK files that they install and are actually malicious.
This problem affects both Android 13 and the most recent version of Android 14. Therefore, it can put many current devices that have the Android operating system at risk. When they achieve their goal of impersonating a legitimate application, they infect the system. They can spoof an Android update, a video-watching app, security software, or a game. From there, it installs the payload and the trouble begins.
Protect yourself
What can you do to avoid being attacked with this type of strategy? Without a doubt, the main thing is clear: do not install applications through APK files. If you want maximum protection, you should avoid software of this type. It is essential that you always install programs from Google Play and official sources.
Additionally, it is key that you always review the permissions What are you going to give when installing an application and if that program really fulfills what it promised. For example, you could install an app to play videos and ask for permissions to use your camera or access location permissions that it doesn’t actually need.
It is also advisable that you have All updated. When vulnerabilities or problems of this type arise, operating systems release patches and updates to correct errors. It is essential that you always install the latest versions and thus avoid problems that compromise your security and privacy, whether Android or any other OS.
On the other hand, having a good antivirus can help you detect threats. If you download a malicious file by mistake, you may be able to detect and remove it before it starts to work. Of course, we recommend that you install a guarantee program and see if your cell phone is being spied on, to have greater protection.
As you can see, you can be in danger if you use an Android device and install applications through APK files. It is important that you take steps to protect yourself and not fall into the hackers’ trap.
