Counterfeit Android Phones Steal Crypto
Counterfeit Android Phones Spreading Crypto-Stealing Malware
Kaspersky Lab recently uncovered a significant threat: thousands of counterfeit Android smartphones are being sold online, pre-loaded with malware designed to steal cryptocurrency and sensitive user data. These devices, sold at discounted prices, are infected with a variant of the Triada Trojan.
How the Scam Works
The Triada Trojan, present on these counterfeit devices from the factory, grants attackers near-total control. This allows them to:
- Steal cryptocurrency by altering wallet addresses.
- Intercept two-factor authentication messages.
- Steal user account information and text messages.
Kaspersky estimates attackers have already siphoned off approximately $270,000 in various cryptocurrencies, with the actual figure likely higher due to the use of untraceable Monero.
The Supply Chain Compromise
The malware is injected into the phones' firmware before they reach consumers. Some online sellers may be completely unaware of the malicious software. Kaspersky believes the supply chain has been compromised, allowing the malware to be embedded at a manufacturing stage. 2,600 confirmed infections have been identified across various countries, with Russia experiencing the majority of cases during the first three months of 2025.
Triada Trojan: A Persistent Threat
First identified in 2016, the Triada Trojan is known for its complexity and ability to target financial applications and popular messaging services like WhatsApp, Facebook, and Google Mail. It is typically spread through malicious downloads and phishing campaigns.
Protecting Yourself
The best defense is to purchase devices only from reputable and authorized distributors. Install robust security solutions immediately after acquiring any new device. Codeum offers comprehensive blockchain security solutions, including smart contract audits and security consulting to help mitigate risks.
Codeum: Your Partner in Blockchain Security
At Codeum, we provide a range of services to protect your digital assets and projects, including:
- Smart contract audits
- KYC verification
- Custom smart contract and DApp development
- Tokenomics and security consultation
- Partnerships with launchpads and crypto agencies
Don't become a victim of this widespread scam. Prioritize security and choose trusted sources for all your technology needs.
Related News:
Recent reports from Threat Fabric and Microsoft highlight other new forms of malware targeting cryptocurrency users and their assets, emphasizing the ongoing need for vigilance and robust security measures.