Beware Some Chinese Phones Are Infected With Triada Trojan Says Researchers

Four Chinese made smartphone were found to have been infected by a malware called Triada Trojan built into their firmware says Dr Web Research Institute. The smartphones namely Leagoo M5 Plus, Leagoo M8, Nomu S10, and Nomu S20, are all cheap smartphones with a cost price with some even lower that $100. The malware designed as a financial threat, is thought to be one of the most dangerous malware around. It inject itself into the Zygote parent process of the Android device making it able to gain access to the context of any application that is running at the time.

The Triada is embedded into the source code of the library in a way that allows it to get control each time an application on the device makes a record to the system log. Just to tell you how sophisticated the strains of the malware is, Earlier this year, it was found out that the Triada has adopted sandbox technology specifically, the open source sandbox DroidPlugin making it enables to evade detection.

Removing the Triada is not easy since it is embedded into one of the libraries of the operating system and located in the system section. The best solution is to install clean Android firmware says the security researchers. It is not clear how the malware made its way into the device, report believes that it may be connected with the ROM makers. Nomu and LEAGOO have been notified of the findings.


No comments