Android users, beware! Make sure to verify the authenticity of any new phone purchase to avoid counterfeit devices pre-loaded with the Triada malware variant.
New Android Phones Infected with Triada Variant
A recent press release from Kaspersky reveals that counterfeit Android phones are now being sold with the data-stealing Triada malware pre-installed.
Kaspersky Lab researchers have identified a new campaign where fake devices imitating popular smartphone brands are being used to target Android users. These devices may have slight variations in names and models, making them appear authentic to unsuspecting buyers who are lured in by low prices.
The campaign has primarily impacted users in Russia, with over 2600 victims globally falling prey to this new Triada variant. The malware is embedded in the firmware of these devices, giving attackers extensive control over the infected devices.
Triada is located in the system framework, allowing it to infiltrate every process on the smartphone. This gives attackers nearly unlimited access to the device.
Triada’s capabilities include stealing account credentials, accessing messaging and banking apps, cryptocurrency wallets, and even manipulating phone calls and text messages. It can also monitor browsing activity, subscribe victims to premium services, and download additional malicious apps.
Removing Triada Malware
Removing Triada from infected devices is challenging and may require rooting the device. To protect against such threats, users should only purchase devices from authorized sellers and install robust anti-malware solutions immediately after unboxing.
Share your thoughts in the comments below.
