1. Forum
  2. tqwNet
  3. TQW GENTECH

  • Dodgy Android smartphones are being preloaded with Triada malware

    From TechnologyDaily@1337:1/100 to All on Thu Apr 3 17:15:07 2025
    Dodgy Android smartphones are being preloaded with Triada malware

    Date:
    Thu, 03 Apr 2025 16:02:00 +0000

    Description:
    Victims have already lost hundreds of thousands of dollars to this Android malware.

    FULL STORY ======================================================================Kaspersk y uncovers counterfeit Android smartphones preloaded with Triada malware The researchers speculate the supply chain might have been compromised More than $270,000 in crypto has already been stolen

    Counterfeit versions of popular Android smartphones are being sold with malware pre-installed, experts have revealed.

    Cybersecurity researchers Kaspersky have warned users about buying heavily discounted Android smartphones from shady online stores after it observed at least 2,600 victims, located mostly in Russia, who received their brand-new smartphones carrying the Triada Trojan.

    The new version of the malware is found in the firmware of infected Android devices, reads the machine-translated announcement. It is located in system framework, meaning a copy of Triada makes its way into every process on your smartphone.

    Monitor your credit score with TransUnion starting at $29.95/month

    TransUnion is a credit monitoring service that helps you stay on top of your financial health. With real-time alerts, credit score tracking, and identity theft protection, it ensures you never miss important changes. You'll benefit from a customizable online interface with clear insights into your credit profile. Businesses also benefit from TransUnions advanced risk assessment tools.

    Preferred partner ( What does this mean? ) View Deal Targeting journalists

    The malware was said to have a wide range of functionalities and can give the attacker almost unlimited possibilities for controlling the compromised devices.

    Among other things, Triada can steal user accounts in messengers and social networks, stealthily send messages on behalf of the victim, steal cryptocurrencies, monitor the victims browser activities, replace links, swap numbers during calls, monitor and intercept SMS messages, download and run apps, and block network connections.

    Dmitry Kalinin, cybersecurity expert at Kaspersky Lab, said Triada remains
    one of the most sophisticated and dangerous threats to Android, but added
    that the researchers dont really know how the devices got infected.

    Its possible that one of the stages in the supply chain is compromised, he said, so the stores selling the devices may not even suspect that theyre selling Triada-infected devices.

    These thousands of victims have already suffered hundreds of thousands of dollars in losses, the researchers concluded.

    Kaspersky claims around $270,000 in cryptocurrency was already siphoned out, suggesting that the number could be even greater since some of the transactions were made in difficult-to-trace Monero.

    The best way to avoid this risk is to only buy smartphones from authorized sellers. Alternatively, users could reflash their device using a clean system image from Google.

    Via BleepingComputer You might also like Private API keys and passwords
    found in AI training dataset - nearly 12,000 details leaked We've rounded up the best password managers Take a look at our guide to the best authenticator app



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/dodgy-android-smartphones-are-being-pre loaded-with-triada-malware


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)