Malware Found Pre-Installed On Some New Android Devices

PhoneSecurityA fake version of Netflix is coming pre-installed on some Android devices.  This Netflix is actually malware and has been stealing personal data and sending it to Russia.

CTO of Marble Security, David Jevans, said “…this isn’t the real Netflix. You’ve got one that has been tampered with and is sending passwords and credit card information to Russia.”

The rule is to only install apps for Android from the Google Play store as Google monitors apps for sale for malicious activity such as malware.  There have been instances where Google has discovered apps that have made it on to the Play store containing something malicious, but most are caught in the security review prior to becoming available.  The same is true for IOS apps, you should only download those from Apple’s App Store.

Most malware is downloaded by those using 3rd party sites for downloads.  Many cyber criminals setup sites for app downloads, whether it looks like a fun new game or a pretty screen saver these are easy ways they get you to download malware.

Marble Security did further testing and found other phones and tablets with the fake Netflix “from at least four different manufacturers,” Jevans said.

Marc Rogers of Lookout Mobile Security said they have also seen instances of malware on new phones, including “a variant of a family of Chinese malware on new devices imported on the gray market from China.”

Marble Security found 4 different versions of the fake Netflix app on a variety of devices:

  • Samsung GT-N8013 Galaxy Note Tablet
  • Samsung SGH-1727 Galaxy S3 Phone
  • Samsung SCH-1605 Galaxy Note 2 Phone
  • Samsung SGH-1337 Galaxy S4 Phone
  • Samsung SGH-1747 Galaxy S3 Phone
  • Samsung SCH-1545 Galaxy S4 Phone
  • Motorola Droid Razr
  • Motorola Droid 4
  • Motorola Droid Bionic
  • Asus A Eee PadA Transformer TF101 Tablet
  • Asus Memo Pad SmartA MT301 Tablet
  • LG Electronics’ Nexus 5 Phone

One important take-away from this is that this malware isn’t about Netflix, Netflix is just an easy target.  Many people use Netflix daily and don’t think twice about it’s safety.  This could just as easily have been a fake Facebook app, Instagram app, etc.

Any app that people use regularly and trust will be a good target for cyber criminals.  Any time they can stop you from thinking twice about a download or the use of a pre-installed app is a successful day for them.



1 Comment

  1. seoveinte Reply

    Everything is very open with a very clear explanation of the issues.
    It was truly informative. Your site is very useful.
    Thank you for sharing!

Leave a Reply

Your email address will not be published.

Back to top