TOR again is gonna be dead slow, so no one is going like that, to be honest so is preferable when it is something sensitive apart from that Firefox or Brave is good but Chrome will be there and track all the user activity even if we never opened it for months which we have to disable it in the settings.
~snip~
This is not always the case, but in general, when you use Tor or VPN, you can often expect that the loading speed of websites will be somewhat slower compared to when you do not use them. However, for those who value privacy,
"slowness" will not be an obstacle, especially if in this way they can additionally protect themselves from such malware.
I am kind of picturing how this actually begins.
It is something like a popup while we browsing on sites and asking us to update Chrome or whatever apps.
~snip~
According to the information in the first thread posted by @lovesmayfamilis, this malware spreads in the following way :
"Xenomorph v3 is currently being distributed via the Zombinder platform on the Google Play Store, posing as a currency converter and switching to using the Play Protect icon after installing a malicious payload."
This means that, as always, great caution is required when downloading apps from any location, including from the Google Play Store, which is not efficient when it comes to absolute filtering of malicious apps. In other words, limit the number of apps you have on your smartphone and download only those that have been around for a long time and have a very large number of downloads and good reviews.