Menu
Bought a brand-new phone? It could still have malware

Bought a brand-new phone? It could still have malware

New phones are being tampered with before they hit the market

A new phone is supposed to be a clean slate. But alarmingly, that's not always the case.

Security company G Data has identified more than 20 mobile phones that have malware installed despite being marketed as new, according to a research report. And it doesn't appear the infection is occurring during manufacturing.

"Somebody is unlocking the phone and putting the malware on there and relocking the phone," said Andy Hayter, security evangelist for G Data.

Many of the suspect phones are sold in Asia and Europe through third parties or middleman and aren't coming directly from the manufacturers, Hayter said.

Brands of affected phones include Xiaomi, Huawei, Lenovo, Alps, ConCorde, DJC, Sesonn and Xido.

G Data has contacted some manufacturers, including Lenovo, whose S860 Android smartphone in one instance was found to have the malware.

Ray Gorman, Lenovo's executive director of external communications, wrote in an email that the device G Data analyzed came from a third-party marketplace. The malware was installed by middlemen, he wrote.

"This is the only such occurrence we have been made aware of," Gorman wrote. "We always recommend customers transact with authorized distribution channels and only accept merchandise that comes in an official box with original factory seals."

The malware is embedded in a legitimate app, such as Facebook, which is sometimes preinstalled on phones, Hayter said. It can read and send text messages, install other apps, collect and change call data, grab location information, record phone calls or send premium SMSes, according to G Data's report.

It's impossible for consumers to remove since it resides inside the phone's firmware.

"You can't take it off there unless you unlock the phone," Hayter said.

G Data was alerted to the problem after receiving support calls from users who said a file had been quarantined but that it couldn't be removed.

The problem has been around for a while. In June 2014, G Data said it found malware in the firmware of a relatively inexpensive Android device made by the Chinese manufacturer Star.

The company's analysts bought Star's N9500 and found malware that purported to be an app for Google's Play Store. The malware, they found, could not be deleted.

In early 2014, Marble Security found malware embedded within Netflix's app that had been preinstalled on six mobile devices made by Samsung Electronics.

That malware grabbed credit card information and passwords and sent it to a server in Russia.

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags mobilitysecuritysmartphonesmalware

Slideshows

Top 50 defining moments of the New Zealand channel in 2016

Top 50 defining moments of the New Zealand channel in 2016

Reseller News looks back on a tumultuous 12 months for the New Zealand channel, assessing the fallout from a year of sizeable industry change. Whether it be local or global mergers and acquisitions, distribution deals or job changes, the channel that started the year differs somewhat to the one set to finish it - Reseller News assesses the key moments that made 2016.​

Top 50 defining moments of the New Zealand channel in 2016
​Hewlett Packard Enterprise honours high achieving NZ channel

​Hewlett Packard Enterprise honours high achieving NZ channel

Hewlett Packard Enterprise honoured its top performing Kiwi partners at the second running of its HPE Partner Awards in New Zealand, held at a glitzy ceremony in Auckland. Recognising excellence across eight categories - from distributors to resellers - the tech giant celebrated its first year as a standalone company, following its official split from HP in 2015.

​Hewlett Packard Enterprise honours high achieving NZ channel
Nutanix treats channel partners to Christmas cruise

Nutanix treats channel partners to Christmas cruise

Nutanix recently took to the seas for a Christmas Cruise around Sydney Harbour with its Australia and New Zealand staff, customers and partners to celebrate a stellar year for the vendor. With the sun out, they were all smiles and mingled over drinks and food.

Nutanix treats channel partners to Christmas cruise
Show Comments