Cybersecurity experts have discovered several viruses that have successfully bypassed the ban on the use of the Accessibility Service system with normal applications. By the way, blocking access was one of the features of the latest version of Android.
The Hadoken hacker group has been known to develop and even release several malware that bypasses Accessibility Service protection. This happens in two stages: first, the device is infected with the virus, which behaves as calmly as possible and does not raise suspicion.
It also loads the second part, which uses an API that lets you use the system’s forbidden features. Then, if the malware requests access to the Accessibility Service from the user and ignores it and allows it, the virus starts operating.
The importance of denying access to the Accessibility Service is that apps that use it can lock the screen, display inconspicuous ads in the background, block calls or messages, and spy on the user.
Source: Ferra