Android malware and supply chain risk

By Robert Lemos

Security experts are increasingly worried about the security of the supply chain with reports of more than 20 incidents where rogue retailers have managed to pre-install malware on new Android phones.

Rogue retailers are unpacking phones made in China, installing malware and then selling the infected phones on the open market, security firm G DATA stated in a report released Sept. 1.

The scheme involves infecting mainly local brands of Android phones—such as Alps, Xiaomi and even a line of devices known as “NoName”—but also it affects phones from well-known international brands such as Huawei and Lenovo.

To read the entire article, please click here.