Thursday, November 17, 2016

Android : a chinese firmware too curious on millions of devices – ITespresso.fr

ye gods. A spy in 700 million smartphones Android ?

Kryptowire, a publisher of security solutions for mobile devices, which has the support of DARPA (agency of innovation at the service of the Defence in the US) and the us department of homeland Security, issued an alert regarding multiple models of Android devices that collects personal data holders for transmission to third parties mysterious.

It has disseminated its work involving a firmware able to remotely update (FOTA in English, the acronym for Firmware Over The Air) edited by Adups Technology based in Shanghai and which is capable of running on 700 million Android devices.

For example, the phone manufacturer, Blu has found that 720,000 of its devices had been affected. Adups Technology also works with chinese manufacturers of smartphones to great influence as ZTE and Huawei. It also provides its firmware to over 400 partners in the mobility (semi-conductors, wearables technologies, etc.).

Initially, this firmware (update software of the device or component hardware) Adups is intended to serve as a tool for the customer support of the manufacturer. But the analysis carried out by Kryptowire shows a drift leading to a leak of personal data : SMS messages, contact lists, call history, identifiers of the terminal (IMSI and IMEI).

in Short, you are being robbed without knowing it. The cycles are perpetual transmission of the data are between 24 and 72 hours.

Silicon.fr provides details on the configuration of the dispersion of the data. The communication with the servers is handled by two applications systems : com.adups.fota.sysoper and com.adups.fota.

The data are transferred to four servers : bigdata.adups.com (primary destination), bigdata.adsunflower.com, bigdata.adfuture.cn, bigdata.advmob.cn. They are attached to the same IP address : 221.228.214.101 (which belongs to Adups).

According to the New York Times, the u.s. authorities consider that the final objective associated with this aspiration, data remains mysterious : a commercial or a technical cyber-espionage ? Editor firmware offending merely evoke ” a mistake.”

For his part, Kryptowire provides in its communication that it has transmitted its findings to the involved actors : Google, Amazon, Adups, and BLU Products.

(photo Credit : Archive NME)

LikeTweet

No comments:

Post a Comment