Identifying Threats in Android: Detection Techniques for Malicious Accessibility Service Exploits

Jeffrie Joshua Lazarus George

doi:10.36948/ijfmr.2025.v07i01.37553

Identifying Threats in Android: Detection Techniques for Malicious Accessibility Service Exploits

Author(s)	Jeffrie Joshua Lazarus George
Country	United States
Abstract	Mobile malware targeting Android devices has expanded at a tremendous rate and poses several new challenges to Android cybersecurity researchers and developers. Of these threats, Android’s Accessibility Service has become an increasingly prevalent one where a malicious application can take control of user interaction, steal sensitive information, or bypass security measures. Accessibility Service was created to help users with disabilities, however, these days its code is violated by Trojan bankers, spyware, and ransomware to make unauthorized transactions, steal credentials, and make modifications to data. Cybercriminals who target Android keep on improving their techniques and moving faster than security frameworks improved even though we are trying hard to strengthen their security frameworks. The detection methodologies discussed in this paper are those concerning Anti Accessibility Service-based malware. In this paper, we present a study based on an analysis of real-world malware families, namely Anubis and TeaBot, that demonstrates several identified indicators of malicious behavior, e.g., suspicious permissions used, events monitored, and overlay attacks. Further, the paper also discusses the ability of static and dynamic analysis techniques to detect threats and class the challenges involved with discriminating legitimate accessibility programs from malware. Concerning future progression, the study also proposes AI-driven detection models and Behavior-based security measures for malware identification and prevention. By practicing the best practices of permission management, developers can help make Android security stronger, and corresponding users are advised to be vigilant with their security of suspicious applications. Strict app review policies must be implemented by regulatory bodies and cybersecurity firms have to find a way to enhance automated threat detection mechanisms in collaboration. When these strategies are integrated into Android’s environment users are better protected against the evolving threats of malware, also legitimate system features such as Accessibility Service can not be abused.
Keywords	Android malware, AccessibilityService exploits, Trojan bankers, mobile security, malware detection, AI-driven threat analysis, dynamic analysis, overlay attacks, cybersecurity, permission abuse
Field	Computer > Network / Security
Published In	Volume 7, Issue 1, January-February 2025
Published On	2025-02-23
DOI	https://doi.org/10.36948/ijfmr.2025.v07i01.37553
Short DOI	https://doi.org/g854jf

View / Download PDF File

E-ISSN 2582-2160

doi

CrossRef DOI is assigned to each research paper published in our journal.

IJFMR DOI prefix is
10.36948/ijfmr

Downloads

Research Paper Format Copyright Permission Form and Undertaking Form Cover Page Vol 7 Isu 2 Cover Page Vol 7 Isu 1 Cover Page Vol 6 Isu 6

All research papers published on this website are licensed under Creative Commons Attribution-ShareAlike 4.0 International License, and all rights belong to their respective authors/researchers.

CC-BY-SA

About IJFMR Fees & Payment Current Issue Publication Archive	Submit Research Paper Track Submission Status Publication Guidelines Publication Ethics Peer Review & Plagiarism	Join as a Reviewer Editors & Reviewers Reviewer Referral Program Get Reviewer Membership Certi.	Website/Journal Policies Usage Policy Content Policies Privacy Policy

Contact Us		+91-9687-828-838	editor@ijfmr.com

International Journal For Multidisciplinary Research

A Widely Indexed Open Access Peer Reviewed Multidisciplinary Bi-monthly Scholarly International Journal

Identifying Threats in Android: Detection Techniques for Malicious Accessibility Service Exploits

Share this