[Mobile Application]
Security Research Center
Tracking side-loaded accessibility services
Guardsquare recommended technique
Technique summary | |
Technique | Tracking side-loaded accessibility services |
Against | Malicious accessibility services |
Limitations | Requires QUERY_ALL_PACKAGES privilege |
Side effects | This technique may restrict third-party app stores if they are not included in the installer list |
Recommendations | Recommended for use combined with other techniques for older devices |
This technique is an extension of accessibility services allow-listing.
Yet another criterion for considering applications as suspicious is whether they have enabled accessibility services and they are side-loaded. The implementation is shown in the snippet below:
Guardsquare
Connect with the author
Table of contents