Advanced Protection Mode in Android 17 prevents apps from misusing Accessibility Services

Android 17 will block non-accessibility apps from using the Accessibility API under Advanced Protection Mode to reduce malware abuse.

Android 17 introduces a new security feature in Advanced Protection Mode (AAPM) that blocks apps without accessibility functions from accessing the Accessibility API. The change, first reported by Android Authority and included in Android 17 Beta 2, aims to prevent malware from abusing these services to spy on users, steal data, or control devices.

The AccessibilityService API allows apps to interact deeply with the Android interface to help people with disabilities navigate and control their devices. Apps designed for accessibility can declare the isAccessibilityTool attribute and are exempt from some disclosure requirements.

However, this powerful access has been abused by malware in the past. Malicious apps have used the API to read screen content, capture keystrokes, click buttons automatically, grant themselves permissions, and steal sensitive data such as banking credentials. Because it can control the interface, attackers have leveraged it to perform fraud, install additional malware, and bypass security prompts.

The new feature adds stricter security settings, including blocking app installs from unknown sources, limiting USB data access, and requiring Google Play Protect scans. The update also restricts use of the Accessibility Services API, allowing only verified accessibility tools marked with the isAccessibilityTool="true" flag. Developers can detect when the mode is enabled using the AdvancedProtectionManager API and adapt their apps with stronger security controls.

“Designed as an opt-in feature, AAPM is activated with a single configuration setting that users can turn on at any time to apply an opinionated set of security protections. These core configurations include blocking app installation from unknown sources (sideloading), restricting USB data signaling, and mandating Google Play Protect scanning, which significantly reduces the device’s attack surface area.” reads Google’s announcement. “Developers can integrate with this feature using the AdvancedProtectionManager API to detect the mode’s status, enabling applications to automatically adopt a hardened security posture or restrict high-risk functionality when a user has opted in.”

According to Google, only tools such as screen readers, switch-input systems, voice input tools, and Braille access apps qualify as accessibility tools. Other apps, like antivirus, automation tools, assistants, cleaners, password managers, and launchers, do not.

Android 17 also introduces a new contacts picker that lets apps request access only to specific contact fields, such as phone numbers or email addresses, or allows users to share selected contacts with third-party apps. According to Google, this feature improves privacy by limiting data access while offering built-in search, profile switching, and multi-selection without requiring developers to build their own interface.

“The Android Contact Picker is a standardized, browsable interface for users to share contacts with your app. Available on devices running Android 17 or higher, the picker offers a privacy-preserving alternative to the broad READ_CONTACTS permission. Instead of requesting access to the user’s entire address book, your app specifies the data fields it needs, such as phone numbers or email addresses, and the user selects specific contacts to share.”states Google. “This grants your app read access to only the selected data, ensuring granular control while providing a consistent user experience with built-in search, profile switching, and multi-selection capabilities without having to build or maintain the UI.”

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, Google)