Cybersecurity Blog

Android Phones with Preloaded Malware for Sale on Amazon – 08/08/17

David Bisson a contributor to grahamcluley.com reports that Trojan malware is being found preinstalled on several Android phone models.  This lovely malware called Triada is undetected by anti-virus applications and is designed to steal banking and login credentials as well as other information. Now you don’t even have to click on a link or download an app.  You can have your phone infected from the point of purchase. Yaaayyyy!!!!  The infected phone models are:

  • Leagoo M5 Plus
  • Leagoo M8
  • Nomu S10
  • Nomu S20

These phones are produced by Chinese OEMs and can be purchased on Amazon.  It is unclear as to whether the malware was installed intentionally or by a disgruntled insider. Regardless, if you are looking for a cheap Android phone I would avoid unrecognizable brands shipped direct from China. It could end up costing you a lot more in the long run.

Android banking malware targets hundreds of apps on Google Play – 04/18/17

It has happened again.  Funny Videos 2017 is just one of hundreds of legitimate apps on Google play have been infected with malware. This latest version of malware interacts with the user’s bank and credit card apps, placing a fake login page over the official one.  The fake login page collects the user’s login credentials and gives the cyber criminals full access to the user’s bank account or credit card.

Google has removed the infected apps from Google Play. Unfortunately that doesn’t help the users who fell victim. How do you reduce the possibility of being a victim of an infected app?  Before you download an app:

  • Read user reviews
  • Install anti-virus software on your phone

In addition, don’t download apps that ask for unusual permissions (ie. asking for the ability to change settings). Once an app is downloaded, if your phone start behaving unexpectedly uninstall it immediately. If the behavior continues, perform a factory reset on your phone.