Android users always take necessary actions to protect their devices from malware. Recently, a security vendor found preinstalled malware on 38 Android devices.
Malware attacks are always a threat for Android users but preinstalled malware from a manufacturer is way beyond expectations. As written in Naked Security, Check Point's Mobile Threat Prevention team says it deleted malware in Android devices belonging to a large telecommunications company and a multinational technology company. The malicious code was already present on the devices even before they were issued to users.
Last week, it was reported that Windows-based malware entered in Android apps during development. In the same way, malicious apps were introduced to the device's ROM using system privileges. Malware steals information from user's device and displays unwanted ads.
Malware named Loki was used by someone to gain system privileges of the device. Another was Slocker which relies on Tor to conceal the identities. Check Point have not declared any name of the affected companies but it gave the list of the infected devices.
As confirmed by Graham Cluley, the affected devices are Galaxy Note 2, Note 3, Note 4, Note 5 and Note 8, Galaxy Note Edge, Galaxy A5, S4 and S7, Xiaomi Mi 4i and Redmi, LG G4, ZTE x500, Galaxy Tab 2 and S2, Oppo N3 and R7 plus, Vivo X6 plus, Nexus 5 and 5X, Asus Zenfone 2, Lenovo S90 and A850. Researchers at Palo Alto Network discovered 132 malicious Android apps on Google Play with Window-based malware last week.
To avoid this kind of attacks, users need to scan their new smartphone for malware. Users should always buy smartphones from trusted websites and stores. Users must avoid third-party apps and use only Google Play apps to lower the risk. At last, Android smartphone users should always update their antivirus app regularly and avoid low reputation apps.