ACCORDING to Google, the latest version of Android, 17.2, can now prevent apps from installing if they try to use the system’s accessibility features. The change is aimed at tightening security when Advanced Protection Mode (APM) is enabled. The accessibility API helps apps assist users with disabilities, but malware has long exploited it to access screen content, read keystrokes, and impersonate users.
Malware examples include Android banking Trojans that steal 2FA codes or drain accounts, using fake overlays and permission abuse to defeat protections. Google’s approach marks a tougher stance: apps whose core purpose is accessibility will now be the only ones allowed to use the accessibility API when APM is on, with password managers or automation apps blocked from accessing it.
The policy builds on prior steps, including warnings in 2017 and permission requirements for Android 12+ apps introduced in 2021, and reflects a broader effort to make devices with APM harder for criminals to compromise.