- Second Chinese Firm in a Week Found Hiding Backdoor in Firmware of Android Devices. From Bleeping Computer.
Security researchers have discovered that third-party firmware included with over 2.8 million low-end Android smartphones allows attackers to compromise Over-the-Air (OTA) update operations and execute commands on the target’s phone with root privileges.
Mobile experts from Anubis Networks discovered the problem this week. This is the second issue of its kind that came to light this week after researchers from Kryptowire discovered a similar secret backdoo in the firmware of Chinese firm Shanghai Adups Technology Co. Ltd. This time around, the problem affected Android firmware created by another Chinese company named Ragentek Group.