Thread Rating:
- 0 Vote(s) - 0 Average
- 1
- 2
- 3
- 4
- 5
Share Post:
The secret behind “unkillable” Android backdoor called xHelper has been revealed
|
Posts: 492
Threads: 452
Thanks Received: 1,279 in 472 posts
Thanks Given: 836
Joined: Oct 2015
Reputation:
32
Quote: The precise cause of the reinfections stumped researchers for months.
In February, a researcher detailed a widely circulating Android backdoor that’s so pernicious that it survives factory resets, a trait that makes the malware impossible to remove without taking unusual measures.
The analysis found that the unusual persistence was the result of rogue folders containing a trojan installer, neither of which was removed by a reset.
The trojan dropper would then reinstall the backdoor in the event of a reset. Despite those insights, the researcher still didn’t know precisely how that happened.
Now, a different researcher has filled in the missing pieces. More about that later. First, a brief summary of xHelper.
A backdoor with superuser rights
Continue reading here:
https://arstechnica.com/information-technology/2020/04/solved-how-android-backdoor-called-xhelper-survives-factory-resets/
Posts: 2,502
Threads: 199
Thanks Received: 3,254 in 1,147 posts
Thanks Given: 11,048
Joined: Oct 2015
Reputation:
194
(04-18-2020 , 03:43 PM)sidemoon Wrote: Quote: The precise cause of the reinfections stumped researchers for months.
In February, a researcher detailed a widely circulating Android backdoor that’s so pernicious that it survives factory resets, a trait that makes the malware impossible to remove without taking unusual measures.
The analysis found that the unusual persistence was the result of rogue folders containing a trojan installer, neither of which was removed by a reset.
The trojan dropper would then reinstall the backdoor in the event of a reset. Despite those insights, the researcher still didn’t know precisely how that happened.
Now, a different researcher has filled in the missing pieces. More about that later. First, a brief summary of xHelper.
A backdoor with superuser rights
Continue reading here:
https://arstechnica.com/information-technology/2020/04/solved-how-android-backdoor-called-xhelper-survives-factory-resets/
Guys, be careful what apps do you install on your devices and always use a powerful AV even for phones. Nowadays the dangers are watching around the corner. And of course avoid free apps. For free apps you are the payment.
|
Users browsing this thread: 1 Guest(s)