Slashdot Mirror

← Back to Stories (view on slashdot.org)

20+ Chinese Android Smartphones Models Come With Pre-Installed Malware

Posted by Soulskill on from the poisoning-the-well dept.

An anonymous reader writes: Security researchers from G DATA have published research (PDF) into Android phones produced in China, which found that a large number of devices ship with pre-installed malware and spyware. Affected models include the Xiaomi MI3, Huawei G510, Lenovo S860, Alps A24, Alps 809T, Alps H9001, Alps 2206, Alps PrimuxZeta, Alps N3, Alps ZP100, Alps 709, Alps GQ2002, Alps N9389, Android P8, ConCorde SmartPhone6500, DJC touchtalk, ITOUCH, NoName S806i, SESONN N9500, SESONN P8, Xido X1111, Star N9500, Star N8000 and IceFox Razor. The researchers do not believe the manufacturers are responsible for the malware; rather, they suspect middlemen within distribution channels. "According to G DATA, the contamination of these smartphones is done by hiding malware as add-on code in legitimate apps. Since users don't usually interact with the malware and the add-on runs in the app's background, unless using a mobile antivirus solution, these infections are rarely discovered."

47 of 74 comments (clear)

  1. A Lenovo with malware?!? by Anonymous Coward · · Score: 5, Funny

    That's unpossible!!!1!

  2. What a winning combnation on the front page... by wardrich86 · · Score: 5, Interesting

    Posted earlier today [Source]:

    Cheap Smartphones Quietly Becoming Popular In the US
    Bloomberg reports that ZTE and its cheap Android smartphones have been grabbing more and more of the market in the U.S. It's not that the phones are particularly good â" it's that they're "good enough" for the $60 price tag. The company has moved up to fourth among smartphone makers, behind Apple, Samsung and LG. That puts them ahead of a lot of companies making premium devices: HTC, Motorola, and BlackBerry, to name a few. ZTE, a Chinese manufacturer, seems to be better at playing the U.S. markets than competitors like Xiaomi and Huawei, and they're getting access to big carriers and big retailers. "Its phone sales are all the more surprising because it's been frozen out of the more lucrative telecom networking market since 2012. That year, the House Intelligence Committee issued a report warning that China's intelligence services could potentially use ZTE's equipment, and those of rival Huawei Technologies, for spying. Huawei then dismissed the allegations as 'little more than an exercise in China bashing.'" I wonder how long it will be before these ones are also found to be full of malware?

    1. Re: What a winning combnation on the front page... by Anonymous Coward · · Score: 1

      The ZTE which TFA focused on doesn't have malware , while some high priced name brand ones do, so I'm not seeing the irony here.

    2. Re: What a winning combnation on the front page... by tmjva · · Score: 1

      The middlemen software adds to the price, so yes I actually do see the irony. (Unless you were sarcastic, then we are in agreement.)

      --
      Tracy Johnson
      Old fashioned text games hosted below:
      http://empire.openmpe.com/
      BT
  3. So bascailly they include an app by future+assassin · · Score: 2

    that does the same stuff and takes your info like all the other free or paid for apps.

    --
    by TheSpoom (715771) Uncaring Linux user here. I have nothing to add to this but please continue. *munches popcorn*
  4. Unlock the bootloaders by Karmashock · · Score: 1

    and then who cares...

    --
    I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
    1. Re:Unlock the bootloaders by ColdWetDog · · Score: 2

      The vast majority of cell phone users who don't know the difference between a bootloader and an Army boot.

      --
      Faster! Faster! Faster would be better!
  5. Is there a POTS that can do OTA? by k6mfw · · Score: 3

    or is something like that be ancient like IMTS that operated on VHF freq. </factious>

    Malware here, spyware there, all I want is a phone but now I have to worry about this.

    --
    mfwright@batnet.com
    1. Re:Is there a POTS that can do OTA? by omtinez · · Score: 1

      I don't know if there's a POTS that does OTA, but there's plenty of ACRONS in your POST that IDK what they mean.

    2. Re:Is there a POTS that can do OTA? by RavenLrD20k · · Score: 1

      IMTS in this case means Improved Mobile Telephone Service. It was a precursor to cellular service that ran on VHF and UHF bands. VHF (Very High Frequency) ran 30MHz to 300MHz. UHF(Some movie by Weird Al...er...no. I mean Ultra High Frequency) ran 300MHZ up to 3GHz.

    3. Re:Is there a POTS that can do OTA? by snakeplissken · · Score: 1

      Well done, those are the definitions of VHF and UHF, but I guarantee no phone service ever ran on the entire VHF or UHF band.

      for what it's worth, from wikipedia:
      "The Improved Mobile Telephone Service (IMTS) is a pre-cellular VHF/UHF radio system that links to the PSTN. IMTS was the radiotelephone equivalent of land dial phone service."

      snake

    4. Re:Is there a POTS that can do OTA? by k6mfw · · Score: 1

      I guarantee no phone service ever ran on the entire VHF or UHF band.

      It didn't. There were specific frequencies allocated to IMTS mobile telephone service. These are in same 150-162 MHz 9and 450-470) band along with police, fire, business, etc. These channels used same bandwidth as a typical 2-way frequency (and 2-way radio has superior audio quality over cellphone). But the IMTS was full duplex (used both xmit and rec freq at same time) and there was not many frequencies available so only the stinking rich got phones in their cars (and many of them had to wait on a very long list to get subscription). See the old TV series Banachek (sp?) where George Peppard sports a car phone in his limo (motivated many techies to get their ham license and build their own car phone, usually a repeater that is phone patched). However doing full duplex with 1960s/70s electronics and industrial quality, these IMTS phones were big, heavy, and scary. Main radio is in trunk, control head was pretty good size as it had regular Model 500 handset and dial (I have one of these control heads, it has a real bell inside). Here we see a briefcase model, if you had one of these babies, then you were The Man. https://en.wikipedia.org/wiki/...

      One thing certain there is no way to plant malware in one of these things.

      --
      mfwright@batnet.com
  6. Where are the phone sold that have malware? by mlts · · Score: 4, Insightful

    The TFA was light on details, but where phones are sold makes a big difference.

    In Asia and South America, there are a lot of small shops selling phones, and oftentimes, they add "value added" stuff like pirated apps and other items. Usually the lesser known makers wind up here.

    In the US, the phones go either directly from the maker to the phone provider to be sold, or from the manufacturer to a store like Best Buy or S-Mart.

    I would be surprised if malware (other than the usual vendor bloatware) was an issue in the US or Europe.

    1. Re:Where are the phone sold that have malware? by AmiMoJo · · Score: 4, Interesting

      I seem to recall phones in the US and Europe being pre-loaded with spyware too. Carrier IQ, Apple's location data collection back in the day...

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    2. Re:Where are the phone sold that have malware? by ShanghaiBill · · Score: 1

      I would be surprised if malware was an issue in the US or Europe.

      This research was done by an American company. I doubt if they flew to South America to get their test samples.

    3. Re:Where are the phone sold that have malware? by ColdWetDog · · Score: 4, Funny

      I would be surprised if malware was an issue in the US or Europe.

      This research was done by an American company. I doubt if they flew to South America to get their test samples.

      Reporter: "C'mon boss - send me to Rio. I really need to research the cell phone market. Really."
      Boss: "You're going to Cleveland."

      --
      Faster! Faster! Faster would be better!
  7. your speech borders treason by Anonymous Coward · · Score: 1

    Of course it's China bashing. The government always need enemies to keep the populace in line.

    "the people can always be brought to the bidding of the leaders. That is easy. All you have to do is tell them they are being attacked and denounce the pacifists for lack of patriotism and exposing the country to danger. It works the same way in any country."

    1. Re:your speech borders treason by fustakrakich · · Score: 2, Insightful

      Nice try, but that doesn't apply here. China is bashing us with defective, harmful products. We need to enforce better consumer protections.

      --
      “He’s not deformed, he’s just drunk!”
    2. Re:your speech borders treason by Archangel+Michael · · Score: 1

      We have great consumer protections on US made goods. Everything else imported not so much. China doesn't care if there is malware on phones, or poison in the pet food or anything else. The only fix for this is to hold the IMPORTERS and DISTRIBUTORS here in the US fully responsible, and put them out of business. The problem is, there is too much money involved in the politics of killing off corporations.

      --
      Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
    3. Re:your speech borders treason by fustakrakich · · Score: 3, Insightful

      The problem is, there is too much money involved in the politics of killing off corporations.

      That sounds more like your typical libertarian poutrage than any kind of truth. Nobody's trying to *kill off corporations*. We only want them to abide by the same rules the rest of us are under. The real problem is that we allow them too much authority over our governments.

      --
      “He’s not deformed, he’s just drunk!”
    4. Re:your speech borders treason by fustakrakich · · Score: 2

      Actually you are wagging the dog. The state is set up by the corporation to serve its interests. It takes a lot of money to put it all together, and politician who doesn't comply will lose all financial support, or worse. Napoleon's power didn't come from the wretched.

      I oppose corporations (and unions) from contributing to political causes, either directly or indirectly.

      You shouldn't. It's interfering. Just don't vote for people who take their money, and the problem is solved.

      --
      “He’s not deformed, he’s just drunk!”
    5. Re:your speech borders treason by robi5 · · Score: 1

      It's not just about 'consumer' protection. China operates massive spy operations. The boatloads of Chinese phones that arrive to the US translates to a national security concern.

    6. Re:your speech borders treason by fustakrakich · · Score: 1

      China operates massive spy operations.

      Yeah, they probably do...

      --
      “He’s not deformed, he’s just drunk!”
  8. Silver Lining by Tablizer · · Score: 1

    We should thank them for saving our bandwidth costs by including them up front. Some of that malware is large, and you know you'd get infected anyhow.

    --
    Table-ized A.I.
  9. Ban the phones by AndyKron · · Score: 1, Insightful

    All phones from China should be banned.

    1. Re:Ban the phones by Anonymous Coward · · Score: 1

      LOL, there wouldn't be any phones at all. Some or all of a cellphones parts are from China.

    2. Re:Ban the phones by sims+2 · · Score: 1

      Then we go back to smoke signals?
      I'm not sure that you can buy a phone that isn't at least partly from china.

      --
      Minimum threshold fixed. Thanks!
    3. Re:Ban the phones by ColdWetDog · · Score: 1

      LOL, there wouldn't be any phones at all. Some or all of a cellphones parts are from China.

      Perhaps he has a point.

      --
      Faster! Faster! Faster would be better!
    4. Re:Ban the phones by transporter_ii · · Score: 1

      Oddly, I'm much more comfortable with Chinese spyware than the American spyware that is installed here. I have used two THL phones, and was mostly really happy with one of them, and one of them was a piece of junk. What does China care where my location is or that I read Slashdot?

      --
      Doctors destroy health, lawyers destroy justice, universities destroy knowledge, religion destroys spirituality
    5. Re:Ban the phones by k6mfw · · Score: 1

      This model highly unlikely to have malware, though highly unlikely to connect to any towers. It is only $80 with buy-it-now. "These phones both have Very low used air time minutes on there life time counters." http://www.ebay.com/itm/2-Old-...

      --
      mfwright@batnet.com
    6. Re: Ban the phones by WindBourne · · Score: 1

      China does not care about you. They care about the IP of the company that you work for; your SSN and credit info so that they can steal your ID and basically your credit; your SSN to get access to your medicaid, medicare, and ssi; and if you or your family or friends work in jobs that require clearances, they want that information. But you? Nope

      --
      I prefer the "u" in honour as it seems to be missing these days.
  10. so called researchers by frovingslosh · · Score: 4, Insightful

    The researchers do not believe the manufacturers are responsible for the malware

    Perhaps these "researchers" could get their act together and be more sure about their conclusion. If the "apps" in question are installed after manufacturing then they are easy to spot and can be uninstalled, and in such a case they likely (but not certainly) were added in the distribution channel. If, on the other hand, they are in the ROM itself then they can only be "disabled" and not uninstalled and it is extremely likely that the manufacturers put them there (most likely knowingly but there is a slim chance it was out of ignorance). Simply saying that they do not believe the manufacturers were not responsible with explaining why they say that is completely bogus.

    --
    I'm an American. I love this country and the freedoms that we used to have.
    1. Re:so called researchers by frovingslosh · · Score: 1

      That was my point. Rather than the "researchers" saying that they don't know if the manufacturers were responsible or not and suggesting that the malware could have been inserted after manufacture somewhere in the distribution channel, looking at the ROMs will tell you that the malware was in there at the manufacturing process (distributors are not going to be developing custom ROMs for every model phone when they could just install the malware, and if anyone want to claim that they did then they should be able to find a malware free version of the ROM). So the manufacturer is indeed responsible for the malware. They might claim that they didn't know some lame undesirable piece of bloatware was indeed malware when they wasted ROM space (and system RAM after booting) on it, but they are still responsible for putting it there.

      You explanation was flawed. You don't uninstall malware/bloatware from the ROM even with ROOT privileges. You can normally only "uninstall" it by replacing the ROM image with another one (which does require root access). You can however disable an app that is included in the ROM from running or from getting updates. This will prevent the malware from acting and will prevent updates that further waste flash memory. And, of course, not letting the malware/bloatware run when the system boots should save system RAM. You don't need root privileges to do this.

      --
      I'm an American. I love this country and the freedoms that we used to have.
  11. Comment removed by account_deleted · · Score: 2

    Comment removed based on user account deletion

  12. Propaganda bullshit. by pigsycyberbully · · Score: 1

    All nicely written in proper English, to give it authority but where's the proof? where are the samples? We have proof of HP ROM base spyware and we have proof of iPhones spyware. The dirty business is coming from the U.S. Is the U.S. spreading rumours using German, companies like G data. Only a couple weeks ago they the U.S. were accusing Kaspersky labs boss of being a ex-KGB agent. All the hackers come from China all the attacks on the U.S. come from China all the attacks all around the world on the Internet come from China. No they don't they come from the U.S. the NSA. This report is just bullshit it has no evidence no proof no samples. Propaganda bullshit. AND YOU ALL KNOW THIS. Not one of use are using a U.S. antivirus product I bet. Not one of use trust using a U.S. smart phone or even a landline. and all of you in the U.S. all know your Internet activities are being monitored by your own government..

  13. One benefit of buying a name brand... by FlyHelicopters · · Score: 2, Interesting

    One benefit of buying a name brand from a trusted source...

    Buy an iPhone from an Apple store and your chances of having malware on it are more or less zero...

    Buy a Samsung Galaxy from the Samsung store in the mall, likewise, almost no chance of a problem...

    The thing is, major brands such as those have a reputation to care about. The cheap off brands don't.

    Likewise, I feel comfortable buying a Microsoft Lumia from a known source, update it to the lastest version of Windows, make sure security software is installed, only install apps from the MS app store, you should generally be good to go.

    There is value in trusted computing. I know a lot of people like to jailbreak, or side load apps, but there is a risk in doing so.

    While my iPhone is locked down... it is worth noting... that it is locked down... I can generally use it with confidence. My desktop Windows PC? Less so, one has to be much more careful with that.

    Now I know what some people say, "Apple is tracking you", or "MS is tracking you". Yea, but I don't care, neither company is out to steal my info or crash my computer or hold me hostage. Neither company is going to steal my CC info or hack my passwords. They can track me all they like, in return they give me a lot of free software and updates.

    1. Re:One benefit of buying a name brand... by FlyHelicopters · · Score: 1

      Apple, MS, Google...= NSA whether you like it or not.

      And why does the NSA snooping bother you?

      My only complaint is that they aren't being honest about it, frankly I think they should be, I doubt most people care.

      I'm not afraid of them either.

      I don't trust any repository of private data to be secure if I can help it.

      Then you might as well unplug and move to the woods, pay cash for everything, don't use a bank account, don't have e-mail, and for sure don't connect to the web.

      Because if you don't, then you're just kidding yourself.

    2. Re:One benefit of buying a name brand... by amiga3D · · Score: 1

      This. There is no way to have privacy in the modern connected world. Anyone who thinks so is deluding themselves. A cell phone is a tracker by design. If you are doing anything you don't want someone to know about and you have a cell phone on you then you are at risk. Spend money with a debit card? Every purchase you make is tracked forever. We have to trust the government and corporations, we have no real choice. If it ever gets to the point we really can't then you can bet it'll take a bloody revolution to fix it because they'll have eyes on everything you do and hear everything you say. It'll make 1984 look like an optimistic prediction of the future.

  14. And? by jimbob6 · · Score: 2

    Sure. So I'm guessing this goes right along side all those American and Korean Android phone models that come with preinstalled malware. In fact I'm pretty sure the term "Android phone" intrinsically implies preinstalled malware and if not there's plenty of it you can install off the play store.

  15. Thank goodness I'm not affected! by gfxguy · · Score: 1

    That's a huge relief - my smartphone is apparently perfectly safe, no malware or anything, nobody trying to track me. Thank goodness for America!

    --
    Stupid sexy Flanders.
    1. Re:Thank goodness I'm not affected! by willworkforbeer · · Score: 1

      That's a huge relief - my smartphone is apparently perfectly safe, no malware or anything, nobody trying to track me. Thank goodness for America!

      Sure, your tin can is safe, but who knows where that string goes once it leaves your window?
      Plus, no LTE.

      --
      Pretending this is my office full of bitter coworkers..
  16. Why am I not surprised? by sethstorm · · Score: 1

    Huawei G510, Lenovo S860

    The former has government experience to do it in-house (especially with their targeting of Nortel), the latter has been caught on accident.

    --
    Twitter supports and protects racists - by smearing their critics with the "Hate Speech" label.
  17. Re: "Best Interest Of Customers" Not Exactly A Con by IonOtter · · Score: 2

    Nice try, but it originated with Slate.

    --
    [End Of Line]
  18. Re:Business as usual. by robi5 · · Score: 1

    Why not cut out the middleman? Integrate vertically and add the malware in the factory.

  19. Comment removed by account_deleted · · Score: 1

    Comment removed based on user account deletion

  20. Brand does not help much by burbilog · · Score: 1

    Buy a Samsung Galaxy from the Samsung store in the mall, likewise, almost no chance of a problem...

    Buy Samsung and get uninstallable "Flipboard" application. You can't even disable it on non-rooted phones!

  21. NoName S806i ? by Smurf · · Score: 1

    Affected models include the Xiaomi MI3, [...] ITOUCH, NoName S806i, SESONN N9500, [...]

    Wait... there's a cellphone brand in China called NoName? And there's a phone called the ITOUCH?

    This is all messed up...