The Kaspersky Cyber Security Company says it has revealed thousands of smart Android smartphones that are sold online with pre -installed harmful programs designed to steal encryption and other sensitive data.
Android devices are sold at reduced prices, the cyber security company Kaspersky Labs He said In a statement on April 1, but it is full of a version of Triada Trojan that affects each process and gives the attackers “almost unlimited control” on the device.
Dmitry Kalinin, a cyber security expert at Kaspersky Labs, said that once the Trojans are given access to the devices, they can steal encryption by replacing the headlines.
He said, “The authors of the new version of Triada are actively making their efforts, according to the analysis of transactions, who were able to transfer about 270,000 dollars in various cryptocurrencies to their encryption portfolios,” he said.
“However, in fact, this amount may be greater; the attackers were also targeting Monero, an encrypted currency.
Among the other Trojan capabilities, user account information stole and objection to the texts received and issued, including bilateral factors.
Trojan penetrates the fixed program for smartphones even before the phone reaches users, and some sellers may not be aware of the time bomb specified in the device, according to Calinin.
He said: “Perhaps, at one stage, the supply chain is at risk, so the stores may not doubt that they sell smartphones with Triada.”
At this stage, researchers at Kaspersky say they found 2,600 confirmed infections through this fraud in various countries, while facing the majority of users in Russia in the first three months of 2025.
Android devices are sold at reduced prices, but are full of harmful programs. source: Naked
Triada Malware first appeared in 2016 and is known to target financial applications and messaging applications such as WhatsApp, Facebook and Google Mail, According to To the Cyber Security Company Darktrace. It is generally delivered through malicious downloads and hunting campaigns.
Kalinin said: “Triada is famous for a long time, and it is still one of the most sophisticated and serious threats of the Android system.”
The best way to avoid a victim of this fraud is to buy devices only from legal distributors and install safety solutions as soon as you buy, according to Kaspersky Labs.
Other companies have also raised the alarm on new forms of harmful programs targeting encryption users.
Related to: Exploitation of encryption, fraud losses decrease to $ 28.8 million in March after February Spike
Cyber Security threat company said in a report on March 28 that it had found a new family of harmful programs that can launch a fake embellishment to deceive Android users to provide their coding seeds with the surrender of the device.
On March 18, TECH GIANT Microsoft said it had found a new Trojan (RAT) aimed at encoding in 20 Google Chrome browser wallets.
magazine: MySESEY CELEBIMECOIN Scam Factory, HK FIRM DOMPS Bitcoin: Asia Express