Skip to main content

Google flags preinstalled malware as hidden threat on millions of Android phones

Maddie Stone, a security researcher on Google’s Project Zero and a former tech lead on the Android Security team, flagged preinstalled malware on millions of new Android smartphones as a hidden threat that requires more attention.

Stone shared her team’s findings at the Black Hat USA 2019 conference in Las Vegas, in a presentation in which she said that a smartphone may have as many as 400 preinstalled apps out of the box. This is a major problem because attackers are attempting to hide malware in the preinstalled apps, as it is easier to convince one manufacturer to agree to a preloaded app than to convince thousands of users to download an infected file.

“If malware or security issues come as preinstalled apps,” Stone warned, “then the damage it can do is greater, and that’s why we need so much reviewing, auditing, and analysis.”

The risk affects the Android Open Source Project, which is a lower-cost alternative to the full version of Google’s mobile operating system. AOSP is installed in cheaper smartphones to keep the price tag down, but unsuspecting customers are in danger of purchasing devices that come with preinstalled malware.

While this means that Android smartphones released by Google and partners such as Samsung are generally safe from the risk, Google’s Project Zero discovered more than 200 manufacturers who have launched devices with hidden malware. One particular malware of concern is Chamois, which upon infecting a device, generates ad fraud, installs background apps, downloads plugins and even send text messages at premium rates. In March 2018, Stone’s team found Chamois preinstalled in 7.4 million Android devices.

Google’s Project Zero has been working with device manufacturers to address the issue, and that has helped reduce the number of smartphones preinstalled with Chamois to only 700,000 between March 2018 and March 2019. Stone, meanwhile, called for security researchers to place a bigger focus on preinstalled malware as a security threat, as the attention is often directed towards malware that people are tricked into downloading themselves. Then again, even Android antivirus apps have shown to provide inadequate malware protection, according to a study from earlier this year.

Stone’s Black Hat presentation follows a study from June that claimed 43% of Android apps were found to have vulnerabilities, while 38% of iOS apps had the same issue.

Aaron Mamiit
Aaron received an NES and a copy of Super Mario Bros. for Christmas when he was four years old, and he has been fascinated…
Gemini has killed Google Assistant to become the AI future of Android
Gemini running on the Google Pixel 9 Pro Fold.

Artificial intelligence is spreading its ample wings throughout the Android operating system, right down to Google's decision to rebuild the assistant experience entirely to integrate it inside Android. It means Google Assistant has gone the way of the dinosaur, relegated to the history books as it’s replaced by the next big thing: Google Gemini. What better way to introduce the changes than letting Gemini tell you itself.

“Gemini, Google AI's latest innovation, is set to redefine the Android user experience. By deeply integrating Gemini into Android's core, users can now interact with the AI more naturally, getting assistance with tasks and information retrieval directly within apps. Gemini can even generate images and summarize calls or organize screenshots, all while prioritizing user privacy with on-device processing capabilities.

Read more
4 ways Google is making Android more accessible to everyone
Updates to Android accessibility features as of August 2024.

While most of the attention will inevitably be focused on the Pixel 9 and Pixel 9 Pro today, Google also made some interesting announcements around accessibility in Android at its Made by Google event. Also, likely to the surprise of nobody at all, they include some AI. Here are the four ways Google is improving accessibility in Android.
Magnifier

Originally released in 2023, Magnifier is a very helpful app that only works on Pixel phones. It uses the camera to help people zoom in on the world around them to make reading signs, menus, and other visual guides easier. By integrating AI into Magnifier, it now has a visual search using keywords so you can find relevant terms quickly. Plus, a picture-in-picture view gives you both an overview of what you’re looking at, along with any zoomed-in area.

Read more
The OnePlus Nord 4 does one thing better than any other Android phone
OnePlus Nord 4 Midnight black with metal back held in hand.

Other than a few deviations, OnePlus has a penchant for value products. The premium OnePlus 12 offers a (mostly) superior set of features and a refined experience over similarly-priced flagships such as the Galaxy S24 Plus or the Pixel 8 Pro. Similarly, the $500 OnePlus 12R offers exceptional performance and a flagship-like experience for its price. The OnePlus Nord 4, which sits in a price bracket right under the 12R, has its own benefits, but one that stands out is its metal back.

The OnePlus Nord 4 is the first and currently the only 5G phone to feature a metal back panel. Not only is it a striking design but it also has another trait that perceivably makes it more exciting than other phones: Its metal body potentially helps improve performance.

Read more