Slashdot Mirror

← Back to Stories (view on slashdot.org)

Manufacturer's Backdoor Found On Popular Chinese Android Smartphone

Posted by samzenpus on from the sneaking-in dept.

Trailrunner7 writes that researchers at Palo Alto Networks have found a backdoor in Android devices sold by Coolpad. "A popular Android smartphone sold primarily in China and Taiwan but also available worldwide, contains a backdoor from the manufacturer that is being used to push pop-up advertisements and install apps without users' consent. The Coolpad devices, however, are ripe for much more malicious abuse, researchers at Palo Alto Networks said today, especially after the discovery of a vulnerability in the backend management interface that exposed the backdoor's control system. Ryan Olson, intelligence director at Palo Alto, said the CoolReaper backdoor not only connects to a number of command and control servers, but is also capable of downloading, installing and activating any Android application without the user's permission. It also sends phony over-the-air updates to devices that instead install applications without notifying the user. The backdoor can also be used to dial phone numbers, send SMS and MMS messages, and upload device and usage information to Coolpad."

3 of 82 comments (clear)

  1. No different than what we have here by Russ1642 · · Score: 4, Interesting

    Pretty sure that both the iOS and Android systems can do this out of the box, they just have chosen not to. There's also the old Kindle deleting 1984 incident.

    1. Re:No different than what we have here by davidwr · · Score: 2, Interesting

      Apple can disable software remotely for security reasons but iOS itself cannot install software without asking the user.

      Unless Apple disables the software that prevents iOS from installing software without the user. This function would only be used for security reasons of course.

      --
      Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  2. Sounds like my Sony Blu-Ray player by fhage · · Score: 4, Interesting
    I have a Sony BDR-S3100 which grabs an IP address even when it's off. It also frequently updates itself without notification when off, leaving new movie trailers and unfamiliar and unwanted Apps in its menu. Each time it does this, (about every 2 weeks) I have to re-enter all my account login information. There's no way to disable these automatic updates. Sony CS has no solution. In addition, I've discovered when the user starts an App, like Netflix, the player first contacts Sony servers before actually running the app. When their servers are down, the player can't run the Netflix App.

    Devices now own us. I miss the days when I had control over my devices.