Criminals in 2017 managed to get an advanced backdoor preinstalled on Android devices before they left the factories of manufacturers, Google researchers confirmed on Thursday.
Triada first came to light in 2016 in articles published by Kaspersky here and here, the first of which said the malware was "one of the most advanced mobile Trojans" the security firm's analysts had ever encountered. Once installed, Triada's chief purpose was to install apps that could be used to send spam and display ads. It employed an impressive kit of tools, including rooting exploits that bypassed security protections built into Android and the means to modify the Android OS' all-powerful Zygote process. That meant the malware could directly tamper with every installed app. Triada also connected to no fewer than 17 command and control servers.
In July 2017, security firm Dr. Web reported that its researchers had found Triada built into the firmware of several Android devices, including the Leagoo M5 Plus, Leagoo M8, Nomu S10, and Nomu S20. The attackers used the backdoor to surreptitiously download and install modules. Because the backdoor was embedded into one of the OS libraries and located in the system section, it couldn't be deleted using standard methods, the report said.
On Thursday, Google confirmed the Dr. Web report, although it stopped short of naming the manufacturers. Thursday's report also said the supply chain attack was pulled off by one or more partners the manufacturers used in preparing the final firmware image used in the affected devices.
Group items matching
in title, tags, annotations or url
1More
A Guide to the Dark Web's Lighter Side | WIRED - 2 views
4More
Gov. Mills signs nation's strictest internet privacy protection bill - Portland Press H... - 0 views
1More
How To Use Nmap Security Scanner (Nmap Commands) - LinuxAndUbuntu - 1 views
1More
Money And Power: The Real Reason For The NSA Spying On Everyone | Techdirt - 1 views
1More
Comcast Dramatically Expands Unnecessary Broadband Caps -- For 'Fairness' | Techdirt - 1 views
1More
Common Music Industry Scams Musicians Should Avoid - 0 views
1More
The Rise of Cyber-Crime as a Service - 1 views
1More
Linux Today - How 'Security Fatigue' Affects Our Choices Online - 0 views
1More
How 'Security Fatigue' Impacts Our Online Decisions - 0 views
3More
Technology Changes; People Don't | Baseline [# ! Note] - 0 views
1More
US Spies On Europe - Business Insider - 0 views
2More
[# ! #Tech:] How do I permanently erase hard disk? - 1 views
1More
LinuxCon Keynoters Look Back and Forward at Linux's Achievements - 0 views
1More
Firefox for Linux will soon support Netflix and Amazon videos | PCWorld - 0 views
2More
Our 'Copying Is Not Theft' T-Shirt Seems To REALLY Upset Some People | Techdirt - 0 views
1More
Twitter's Woes Signal the End of the Social Wars | WIRED - 0 views
« First
‹ Previous
2161 - 2180 of 2255
Next ›
Last »
Showing 20▼ items per page