Quote : " We showed how modern mobile malware can evade detection by malware scanners that rely on signatures, static and dynamic analysis approaches. Then, we uncovered a working Android malware PoC that can persistently monitor all of a victim’s activity, and allow attackers to read and possibly compose corporate emails and documents via the victim’s device, as well as elevate their permissions to remotely encrypt or wipe the device.
One of the most interesting traits of this kind of malware is its low footprint: it does not require rooting the device and asks for limited permissions upon installation. Yet, this malware is able to circumvent many of the protections that most users assume are reliably protecting their Android devices and compromise corporate resources used via the device. "
Source : “Accessibility Clickjacking” - The Next Evolution in Android Malware that Impacts More Than 500 Million Devices » Skycure
That's a reson why you should think twice about turn on Accessibility even if it's a long process as shown here :
Getting malicious apps available on Google app store is a totaly different question/topic...