You are here: Home » News-IANS » General
Business Standard

Trojan Triada came pre-installed on Android: Google

IANS  |  San Francisco 

Two years after a Trojan called was spotted on some budget smartphones, has confirmed that criminals did actually manage to get an advanced pre-installed devices before they even left the

Triada's purpose was to install apps that could be used to send spam and display ads using tools that bypassed Android's built-in security protections, thus allowing the malware to directly tamper with every installed app, reported on Saturday.

first came to light in 2016 in articles published by Kaspersky that said the malware was "one of the most advanced mobile Trojans" the security firm's analysts had ever encountered.

In July 2017, security firm Dr. Web reported that its researchers had found built into the firmware of several devices.

And while did confirm the Dr. Web report, it did not name the original equipment manufacturers.

The report also said the supply chain attack was pulled off by one or more partners the manufacturers used in preparing the final firmware image used in the affected devices.

According to Lukasz Siewierski, a member of Google's Security and Privacy Team, Triada infects device system images through a third party during the production process when the manufacturer turns to a third to add a feature that does not come part of the Android Open Source Project, like face unlock.



(This story has not been edited by Business Standard staff and is auto-generated from a syndicated feed.)

First Published: Sun, June 09 2019. 11:38 IST