Report finds Android malware pre-installed on hundreds of phones

Must Read

President Ram Nath Kovind appoints new governor for Kerala, Telangana, Himachal Pradesh and Maharashtra

President Ram Nath Kovind appointed new governors for Maharashtra, Kerala, Telangana, Rajasthan, and Himachal Pradesh on Sunday. Former Union Minister Kalraj...

NRC list for Assam released; Fear looms as 19 lakh people face exclusion

NRC (National Register of Citizens) for Assam has been published at 10 am today. The final list excludes over...

Lateral Entry Era Begins as Union govt. appoints 9 professionals to Joint Secretary posts

The government has appointed its first batch of private professionals to the post of Joint Secretary in various ministries....

According to a report by Avast, they have discovered pre-installed malware on low-cost Android devices. The list of affected devices included products by ZTE, Archos, and Prestigio. Affected devices were not certified by Google, said the company.

More details about the malware:

According to a statement from Avast Threat Labs, the adware goes by the name ‘Cosiloon‘. It creates an overlay to display an ad over a webpage within the user’s browser. Cosiloon first came to the attention of Russian anti-malware company Dr. Web in 2016. According to the analysis by Avast, the adware is active since then because no security measures were taken from both firmware developers and device manufacturers.

According to Avast Threat Labs, it was observed from time to time some strange Android samples in its database. The samples look like any other adware sample, with the exception that the adware appeared to have no point of infection and several similar package names, the most common being: ·; ·; · and ·

The adware forces users to look at an ad by having it pop up while browsing a site in the default web browser of the user’s phone. The ads often lead users to download malicious apps, which in turn download more apps into the user’s phone.

How to deactivate Cosiloon

Users can find the dropper in their settings (named “CrashService”, “ImeMess” or “Terminal” with generic Android icon), and can click the “disable” button on the app’s page, if available (depending on the Android version). This will deactivate the dropper and once Avast removes the payload, it will not return again.

It affected thousands of users in the past month alone. The latest version of the adware was found on around 18,000 devices belonging to Avast users located in more than 100 countries, including Russia, Italy, Germany, India, Mexico, the UK, as well as some users in the US.

Avast is coordinating with Google to ensure firmware developers find a permanent solution to the Cosiloon problem, and Google is working to develop internal safeguards for its Play Store.


Please enter your comment!
Please enter your name here

- Advertisement -

Latest News

2 killed, 4 injured in Mogadishu car bombing

Mogadishu, Sep 19 (IANS) At least two persons were killed and four others injured on Wednesday evening in a...

Neha Sharma is here to brighten up your day with THESE latest photos

Neha Sharma is a well known movie actress who is known for her work in movie like Crook and Kyaa Super Kool Hai Hum. Neha will next be...

Comedy isn’t a race, there’s no finish line: Russell Peters

By Durga ChakravartyNew Delhi, Sep 19 (IANS) Russell Peters has made people roll on the floor, laughing on his unabashed one-liners on stereotypical accents,...

Trump revokes California’s authority to set emission rules

Washington, Sep 19 (IANS) The White House has stripped the US state of California of its right to set its own vehicle emissions standards...

Rajkummar Rao looks forward to start shooting with Priyanka Chopra

Mumbai, Sep 19 (IANS) Actor Rajkummar Rao, who will be soon collaborating with Priyanka Chopra for the Netflix film "The White Tiger", has said...
- Advertisement -

More Articles Like This