Beware of Chameleon Android malware stealing financial information.

A new Android trojan called Chameleon has been discovered by cybersecurity firm Cyble, which has been targeting users in Australia and Poland since the start of the year. The malware mimics the CoinSpot cryptocurrency exchange, an Australian government agency, and the IKO bank. Chameleon includes a wide range of malicious functionality, including stealing user credentials through overlay injections and keylogging, cookies, and SMS texts from the infected device. The malware performs a variety of checks to evade detection by security software and requests permission to use the Accessibility Service, which it abuses to grant itself additional permissions, disable Google Play Protect, and stop the user from uninstalling it.