Malware infecting Androids somewhere in the supply chain
Smartphones from Samsung, LG, Xiaomi, ZTE, Oppo, Vivo, Asus and Lenovo have been spotted sporting malware they apparently carried when they were shipped.
The malware discovered by Check Point Software Technologies included info-stealers, ransomware like Slocker; Loki, which shows “illegitimate advertisements” to generate revenue while stealing device information; and information stealers.
Check Point says it found infections in 38 Android devices. Since the malware wasn’t in the vendor’s ROM, the company’s researcher Oren Koriat reckons they were added in the supply chain between vendor and customer.