Insec Ethical Hacking Hub Horror of Horrors: Smartphones From Xiaomi, Lenovo & Huawei Have Pre-Installed Malwares Says GData 1

Android Malware Virus Smartphone

We have traditionally believed that viruses and malwares are something which we induce into our computers and mobiles as we use different websites, apps and services. However, what if the malwares are pre-installed into your new smartphone?

This leaves very little defense mechanism and protection.

Germany based 30 year old anti-virus company: GData has conducted a research into malwares found in smartphones; and the results aren’t good.

Gdata has found some specific smartphone models from Xiaomi, Lenovo and Huawei had pre-installed malwares in them, which had pre-authenticated permissions and access to play havoc with your smartphone.

Besides these three popular brands, there are several other companies as well, whose smartphones were found to be laced with pre-installed malware.

Here is an excerpt of the infected models, derived from the full list:

Malware Handsets

In 2014, Gdata had found that three smartphones namely: Star N9500, Star N8000 and Icefox Razor had pre-installed malwares in their packed units. It created a furore among the tech observers and blogging community; and demands for stricter measures to stop this evil practice were demanded.

However, this time, Gdata has certainly stirred a hornet’s nest as top three Chinese mobile phone vendors: Xiaomi, Lenovo and Huawei have been directly mentioned in their report.

Modus Operandi

As per the report, such malwares are hidden among popular apps, and works normally for the end-user. However, behind the humble screens, lies a great conspiracy to hack the users’ data.

The report said, “In the analysed cases, the malware is usually hidden in a legitimate app which is manipulated to contain malware as an add-on. The malware hides alongside the usual functions in the app. Users do not notice these add-on functions as the majority of the processes run in the background..”

Giving an example of Facebook, Gdata security analysts said that the hackers already install hidden malware into the app, which the user is not aware.

Disguised Facebook App


The users will use the app as any other normal activity, but in the background, the malware will grant access to third parties without users’ consent. As the researchers ran a security check on this Facebook app (which was found in one of the infected handsets), they located the malware: Android.Trojan. Andup.D.

Disguised Google Drive App


In case of Google Drive app, GData found Android.Monitor.Gsyn.B Malware in one of the offending handsets.

Here is sample of permissions that these apps have. Essentially they do anything and everything from connecting to internet, reading and sending SMSes, read contacts, access location among other things.

android permissions

The worst thing is that, such infected apps cannot be uninstalled, as they are the fixed installations on the handset. A horror story turning into reality here..

Gdata has specifically said that it’s the middlemen who infect these boxed handsets before delivery; it is highly unlikely that any reputed smartphone brand will ‘deliberately’ install malwares into their own handsets.

However, the issue is about the risk of such daring attacks, which a novice or first time smartphone user won’t be aware of.

In case there are dedicated middlemen involved in this dirty business, we are not even aware how to stop this.

You can access the complete report titled “G DATA MOBILE MALWARE REPORT. THREAT REPORT: Q2/2015” here.

The post Horror of Horrors: Smartphones From Xiaomi, Lenovo & Huawei Have Pre-Installed Malwares Says GData first appeared on . Mobile Apps: Android | iOS.

Leave a comment

Your email address will not be published. Required fields are marked *

BOT or HUMAN ? ? *