Malware News Malware Found in the Firmware of 141 Low-Cost Android Devices

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.bleepingcomputer.com/news/security/malware-found-in-the-firmware-of-141-low-cost-android-devices/
Two years after being ousted, a criminal operation that has been inserting malware in the firmware of low-cost Android devices is still up and running, and has even expanded its reach.


News of this group first surfaced after a report in December 2016, when Russian antivirus vendor Dr.Web disclosed that a mysterious threat actor had found a way to penetrate the supply-chain of several mobile carriers, infecting phones with malware.


At the time, experts said they found malware in the firmware of at least 26 low-cost Android smartphone and tablets models. Once ousted, Dr.Web hoped crooks would pack up and move on to another operation.

Crooks expand operations and infect more devices

But in a report released yesterday, cyber-security firm Avast says the group has never ceased operations and has continued to poison the firmware of more and more devices, growing their operation many times over.


Avast published a list of over 140 Android smartphones and tablets on which it says it found the group's malware —which they named Cosiloon.
Click to expand...
Infection point remains unknown even after two years

The cyber-security firm says it has had a hard time tracking when the malware is inserted in the firmware of these devices. There are too many mobile carriers and smartphone vendors affected to pin the blame on one of them.


Infected devices have been found in over 90 countries, and the only common component between them is that they all use a Mediatek chipset.
Click to expand...
 
  • Like
Reactions: spaceoctopus, FreddyFreeloader, Weebarra and 3 others
upnorth

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,459
The list from Avast is just confusing IMO. How hard can it be to link text to some genuine sources or are they in general incompetent?
 
Last edited:
  • Like
Reactions: Weebarra
You must log in or register to reply here.

Similar threads

silversurfer
    • Like
    • +Reputation
Android Devices with Backdoored Firmware Found in US Schools
Replies
0
Views
893
News Archive
silversurfer
silversurfer
vtqhtr413
    • Like
Apple to Launch 'Low-Cost' MacBook Series Next Year
Replies
0
Views
291
News Archive
vtqhtr413
vtqhtr413
upnorth
    • Like
Malware Infecting Sonicwall devices Survives Firmware updates
Replies
0
Views
523
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top