Tech

Keenadu Malware: Android Hack Hard to Remove – Beware!

by Sophie Williams
written by Sophie Williams 0 comments

ⓘ Tima Miroshnichenko, Google, edited

Keenadu : Android logiciel malveillant qui peut accéder à tout ce qui se trouve sur un appareil infecté et dont il est loin d’être facile de se débarrasser.

Security researchers have uncovered a new Android malware, dubbed Keenadu, that is pre-installed on some devices and grants attackers nearly complete control. Removing the malware proves exceptionally difficult, often requiring expert assistance.

Kaspersky Labs researchers recently identified the sophisticated malware, which, alarmingly, is sometimes found pre-installed on modern Android devices. The discovery highlights the ongoing challenges in securing the Android ecosystem and the potential for malicious software to infiltrate devices before they even reach consumers.

Keenadu can infect devices through over-the-air (OTA) update packages, silently embedding itself within the device’s firmware. It can also be delivered via unofficial app installers and, in some cases, even through the official Google Play Store.

The malware provides attackers with extensive access to compromised devices, including system data, personal files and sensitive information. It also allows for the installation of applications without user consent, according to Kaspersky. Currently, the malware appears to be primarily used for ad fraud.

The following applications have been discovered as infected by Kaspersky:

The origin of the malware remains unclear, but researchers noted that it does not activate if it detects time zones or a location within China, or if the Google Play Store is not found on the device. The absence of the Play Store is notable, as it is not officially available in China.

The malware has been found on numerous devices, including the iPlay 50 Mini Pro manufactured by Alldocube. Alldocube, a Chinese company, previously acknowledged that its OTA update channels had been compromised, as reported by BleepingComputer.

As of this writing, Kaspersky reports that Keenadu has affected over 13,000 victims, with the majority of impacted devices located in Japan, Russia, the Netherlands, Germany, and Brazil.

Unfortunately, if a device is infected, replacing it with a new model from a more reputable manufacturer is often the most effective solution. The malware integrates so deeply into the device’s firmware that removal is practically impossible. While obtaining firmware from another provider is possible, it carries its own risks, such as incompatibility.

Sophie Williams is the Tech Editor at Headlinez.News, covering innovation, artificial intelligence, cybersecurity, and emerging technology trends. Before joining the publication, she worked as a technology correspondent and product analyst for multiple tech-focused media outlets. With a background in computer science and digital media, Sophie bridges technical depth with accessible reporting, bringing readers closer to the technologies transforming everyday life. Expertise: Artificial intelligence, consumer tech, cybersecurity, startups, digital transformation. Location: San Francisco, California, USA

You may also like

Halo Studios Development Team Issues Span Years, Raising...

Microbe Duo Could Explain the Origin of Complex...

Return to the Roots of Fear: Resident Evil...

“My Daughter Can’t Wait Any Longer”: A Mother’s...

Spotify Update: Disable Videos for More Listening Control

NASA Tracks Massive Asteroids Approaching Earth

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Privacy & Cookies Policy