Home

Google confirms - brand new Android phones were delivered with back doors

Google | Jun 13, 2019 | Master3395

Here's the explanation of how it could happen.

Hackers managed in 2017 to install an advanced backdoor in Android devices before the phones left the manufacturers' factories. It confirms Google in a blog post.

There is the talk of Triada - a back door that Kaspersky mentioned already in 2016. The security company called Triada "one of the most advanced mobile trojans" they had ever encountered.

The purpose of Triada is to install apps that can send spam and display advertisements on the victim's phone. By breaking past security mechanisms in the Android system, the Trojan can tamper with any installed Android apps.

Confirms Triada attacks
It was in July 2017 that the security company Dr. Web discovered that the Triada Trojan was built into the firmware of a number of Android devices. However, Google has been silent about the serious security shortage but has now confirmed Dr. Web's information.

However, Google does not mention which mobile manufacturers are affected by the Triada issue. The company, on the other hand, states that the attack was carried out by a manufacturer-partner just before the final firmware verification was completed.

Here's Google's explanation

"Triada infects the image files from the device system through a third party during the manufacturing process. Sometimes, manufacturers include features that are not part of the Android Open Source Project, such as face unlocking. The manufacturer can then cooperate with a third party who can develop the desired function and then send the complete system image to the vendor for development. Based on analyzes, we believe that a supplier named Yehuo or Blazefire infected the returned sewing images with Triada ». writes Google.

Google has later confirmed that they have been working with the relevant mobile manufacturers to launch so-called OTA (Over The Air) updates that seal the back door. How many phones ended up being affected by the damage is still an unanswered question. According to the Dr. Web report of 2017, the middle-class phones were Leagoo M5 Plus, Leagoo M8, Nomu S10, and Nomu S20 among the infected phones.

Keywords: android, backdoor, google, triada, trojan

Sources: Arstechnica

Author: Master3395

Comments:

comments powered by Disqus
Discord

Page 1 of 448  >  >>

Samsung Customer Finds Simple Security Glitch That Allows Authentication Bypass in Galaxy S10 Fingerprint Reader

uploads%2Fstory%2Fthumbnail%2F92769%2F01adf382-e1fe-46e7-81da-6df212edaa0d.jpg%2F950x534.jpg

Oct 17, 2019 | Category: General | Comments

Samsung Galaxy S10 Fingerprint Reader Glitch A customer has found a security flaw with her Samsung phone.

read more…

Now you need to update iPhone and Mac - lots of bug fixes

Apple-WWDC-2019-1134548.jpg

Oct 16, 2019 | Category: Apple | Comments

iPadOS also updated.

read more…

Get to taste their own medicine after that

EGTolJ2U4AALtj1.jpeg

Oct 15, 2019 | Category: Apple | Comments

"Remember when we all laughed at Windows UAC"?

read more…

Page 1 of 448  >  >>