Android Supply Chain Infecting Mobiles with Malware Before DeliveryMalware & Forensics

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATION
Already a Member Login Here

Home Forums Malware & Forensics Android Supply Chain Infecting Mobiles with Malware Before Delivery

This topic contains 2 replies, has 2 voices, and was last updated by  812teck 2 years, 7 months ago.

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #89271

    812teck
    Participant

    Android Supply Chain Infecting Mobiles with Malware Before Delivery
    (March 10, 12, & 13, 2017)

    Certain Android smartphones are being infected with malware somewhere along the supply chain. The affected brands include Samsung, Xiaomi, Asus, LG, ZTE, and Lenovo. Several types of malware have been found on the devices: data stealers, malicious advertisement displayers, and ransomware.

    Editor’s Note

    [Jake Williams]
    A great example of why supply chain security is so important in organizations today. These attacks do not appear to be targeted at the specific organizations where the infected phones were found. Supply chain due diligence includes assessing the security of newly acquired hardware and software on a periodic basis.

    [Dr. Johannes Ullrich]
    The old “re-image before use” rule that many applied to regular computers should apply to mobile devices as well.

    [William Hugh Murray]
    This is just one of the risks that enterprise users of open systems, like Android, have to manage. However, it is one that the young, the elderly, and the otherwise naive can only avoid. However much scorn the community likes to heap on Apple for its “walled garden” strategy, it is a welcome, not to say necessary, option.

    Read more in:
    http://www.theregister.co.uk: Malware infecting Androids somewhere in the supply chain
    https://arstechnica.com: Malware found preinstalled on 38 Android phones used by 2 companies
    http://www.v3.co.uk: Samsung, Asus, and Lenovo smartphones come with pre-installed malware, Check Point Software has warned

    #89329

    s3crafcp
    Participant

    Thanks for sharing!

    #89564

    812teck
    Participant

    yw

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Support Cybrary

Donate Here to Get This Month's Donor Badge

 

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel