Login

**drewski** · 2014-12-07, 10:10

http://www.zdnet.com/article/cheap-andro...h-malware/

Came across this scary article about smartphones from China preloaded with malware. What struck me most is that some of the names aren't that uncommon at all :
Counterfeit Samsung GS4/Note II
A variety of TECNO devices
Gionee Gpad G1
Gionee GN708W
Gionee GN800
Polytron Rocket S2350
Hi-Tech Amaze Tab
Karbonn TA-FONE A34/A37
Jiayu G4S – Galaxy S4 clones,
Haier H7
a i9502+ Samsung clone by an unspecified manufacturer

**Bacon_Puffs** · 2014-12-07, 10:46

Thanks for posting this article.

The author is incorrect on one point though. Root. Remove. Done.

However he does bring up a really good point - that this is part of the supply chain, not necessarily (and probably unlikely) the manufacturer putting it on there.

I also might add, phishing malware are really not that dangerous, unless a person is foolish enough to be clicking strange SMS messages and giving out personal info to the sites they are lead to.

**ttrance** · 2014-12-07, 20:40

bank information, passwords?

**Bacon_Puffs** · 2014-12-07, 21:41

(2014-12-07, 20:40)ttrance Wrote: bank information, passwords?

See "phishing". This information is only obtained if you willingly give it out to a phishing site.

**drewski** · 2014-12-08, 00:21

(2014-12-07, 21:41)Bacon_Puffs Wrote:
(2014-12-07, 20:40)ttrance Wrote: bank information, passwords?

See "phishing". This information is only obtained if you willingly give it out to a phishing site.

That is true, in this particular case, it is a classic malware phishing app that kicks into action when you use SMS or WAP or download additional software through other links. I myself never use my smartphone to do banking, shopping etc. However, what I do do is login to email or social media sites, and if the phone has malware of the type that actually captures your keystrokes etc, there's not a whole lot you can do.

As for rooting, not all the phones allow one to root either, and truth be told, there's a lot of folks out there who use these phones who know nothing about rooting and unlocking bootloaders. I suppose the bad guys know this to be the case too.

This is not the first time something like this has happened either and probably won't be the last. I still remember the photo frames with LCD screens that came with built in malware a few years ago. And while technically not malware, there was this whole fiasco with Carrier IQ back in 2011 as well.

**Bacon_Puffs** · 2014-12-11, 22:07

Yes. I don't mean to say it's fine @drewski . I would classify this as malware. Just putting an alternative view point and warning not to click strange SMS messages and input personal info to the sites they lead you to.

**drewski** · 2014-12-12, 02:19

(2014-12-11, 22:07)Bacon_Puffs Wrote: Yes. I don't mean to say it's fine @drewski . I would classify this as malware. Just putting an alternative view point and warning not to click strange SMS messages and input personal info to the sites they lead you to.

It's all good @Bacon_Puffs. The more we can educate ourselves (and others) about all the dangers out there, the better.

**Ninja^F.U.B.A.R.** · 2014-12-12, 02:52

Just a small note here too that according to the link, that is just one example of how this malware can be used. They didn't go into detail about other possibilities.

Seems strange they wouldn't just install a keyloggers and email all text input. Thats I'd do it if I was one of these low life scumbags.

**djmagic** · 2014-12-13, 00:07

so do we know what the malware is and where it can be found on a rooted device...?

WuddaWaste · 2014-12-13, 07:43

Run your favorite security scan software to identify the software.
Use your favorite utility to remove the software.

Personally, I've used Lookout + Titanium Backup in the past to do this.

Login
Username:
Password:	Lost Password?
	Remember me