Skip to main content
  1. Home
  2. Mobile
  3. News

Google flags preinstalled malware as hidden threat on millions of Android phones

By

Maddie Stone, a security researcher on Google’s Project Zero and a former tech lead on the Android Security team, flagged preinstalled malware on millions of new Android smartphones as a hidden threat that requires more attention.

Stone shared her team’s findings at the Black Hat USA 2019 conference in Las Vegas, in a presentation in which she said that a smartphone may have as many as 400 preinstalled apps out of the box. This is a major problem because attackers are attempting to hide malware in the preinstalled apps, as it is easier to convince one manufacturer to agree to a preloaded app than to convince thousands of users to download an infected file.

Recommended Videos

“If malware or security issues come as preinstalled apps,” Stone warned, “then the damage it can do is greater, and that’s why we need so much reviewing, auditing, and analysis.”

Please enable Javascript to view this content

The risk affects the Android Open Source Project, which is a lower-cost alternative to the full version of Google’s mobile operating system. AOSP is installed in cheaper smartphones to keep the price tag down, but unsuspecting customers are in danger of purchasing devices that come with preinstalled malware.

While this means that Android smartphones released by Google and partners such as Samsung are generally safe from the risk, Google’s Project Zero discovered more than 200 manufacturers who have launched devices with hidden malware. One particular malware of concern is Chamois, which upon infecting a device, generates ad fraud, installs background apps, downloads plugins and even send text messages at premium rates. In March 2018, Stone’s team found Chamois preinstalled in 7.4 million Android devices.

Google’s Project Zero has been working with device manufacturers to address the issue, and that has helped reduce the number of smartphones preinstalled with Chamois to only 700,000 between March 2018 and March 2019. Stone, meanwhile, called for security researchers to place a bigger focus on preinstalled malware as a security threat, as the attention is often directed towards malware that people are tricked into downloading themselves. Then again, even Android antivirus apps have shown to provide inadequate malware protection, according to a study from earlier this year.

Stone’s Black Hat presentation follows a study from June that claimed 43% of Android apps were found to have vulnerabilities, while 38% of iOS apps had the same issue.

Editors’ Recommendations

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received an NES and a copy of Super Mario Bros. for Christmas when he was four years old, and he has been fascinated…
A native Android Apple TV app is now in the Google Play store
The Apple TV app on a Samsung Android phone.

It's been five years since the Apple TV app was launched, and we're now getting a version for Android devices -- built from the ground up for native Android integration -- in the Google Play store that will have the same Apple TV+ functionality as the Apple ecosystem version. The new app means users with Android OS 10 or later will finally have the ability to sign up for Apple TV+ on their Android-based phones and tablets to watch shows and movies like Severance, Silo, Killers of the Flower Moon, and CODA. There will be no difference in pricing on Android compared to Apple.

This should enable seamless interactivity across platforms for features such as Continue Watching -- which keeps track of where you are in a show or movie and allows you to pick up from that spot when you return, regardless of the device you watch on. Customer's Watchlist will be kept up to date across devices as well, and since purchases are linked to your Apple account, all the content you own will be accessible on any device with the new updated app. One thing missing at launch, though, will be the ability to cast Apple TV content from your Android device.

Read more
You can officially download the TikTok app again on Android phones
Download page for TikTok app on Android in the US.

The TikTok app has not returned to the Google Play Store or Apple’s App Store, ever since it went dark in the US with a ban looming over its head. That means fresh downloads are not possible on Android and Apple smartphones. Things have finally eased, at least for Android fans.

The official TikTok website now lists the software package that lets users download the app directly, instead of an app repository such as the Google Play Store. Third-party websites have hosted the app's software bundle for a while, but that route usually comes with the risk of malware.

Read more
March 4 is going to be a big day for this fun Android phone brand
The rear panel and camera island on the Nothing Phone 2a.

Nothing has released yet another vague teaser for what could be a new smartphone, but this time the information shared includes a date and time: 10 a.m. GMT on March 4. The post, first shared to Nothing's X account, doesn't share many details — just a vague shape that some fans have already tied to the phone's camera module, or perhaps its iconic glyph interface.

Nothing is no stranger to cryptic teasers; in fact, it's one of the company's preferred marketing methods. Nothing has a history of slowly doling out information in the weeks leading up to launch, and that technique has proven effective in building hype.

Read more