New Delhi, March 31, KNT: The Ministry of Home Affairs has issued an advisory warning citizens about a new wave of Android malware that misuses accessibility permissions to gain control over users’ devices and steal sensitive information.
The alert, issued by the Indian Cyber Crime Coordination Centre (I4C), highlights a category of threats referred to as “Android God Mode,” which officials say are increasingly being used in cyber fraud cases across the country.
The advisory is significant as it points to a growing trend of sophisticated mobile-based attacks that target everyday users by impersonating trusted services such as banking apps, government platforms, and customer support applications.
According to the National Cybercrime Threat Analytics Unit (NCTAU), these malicious applications often disguise themselves as legitimate services such as SBI YONO, RTO challan systems, digital certificates, or support apps, and trick users into installing them.
Once installed, the apps exploit accessibility permissions to gain near-total control over the device, allowing attackers to access financial data, personal information, and even perform actions without the user’s knowledge.
“These apps misuse accessibility permissions to gain near-total control over the device, enabling theft of sensitive financial and personal information,” the advisory said.
Officials warned that such malware is often distributed through unofficial links, messaging platforms, or APK files shared outside trusted app stores.
Authorities have advised users to install applications only from official platforms such as the Google Play Store and to avoid granting accessibility permissions to unknown or suspicious apps.
“Never allow accessibility permissions to apps that are not fully trusted,” the advisory said, adding that users should remain cautious of applications received via links, including those shared on messaging platforms like WhatsApp.
In case of suspicion, users have been advised to immediately uninstall the application and review all granted permissions on their devices.
Cybersecurity experts said accessibility permissions are designed to assist users with disabilities but can be exploited by malicious actors if misused.
“If a rogue app gets accessibility access, it can read screens, capture inputs, and control actions, making it extremely dangerous,” a cybersecurity analyst said.
Authorities have urged citizens to report cyber fraud incidents by calling the national helpline 1930 or visiting the official cybercrime reporting portal.
The advisory comes amid a rise in digital fraud cases in India, with officials stressing the need for greater public awareness and vigilance. [KNT]
