Malware Spotted on Government-Subsidized Android Phone

Malware Spotted on Government-Subsidized Android Phone

The chances of picking up malware on a mainstream Android phone with default settings are extremely low, but there are uncountable Android devices in the world. Not all those phones are entirely trustworthy, either. Some little-known phones have shown up with pre-installed malware thanks to unscrupulous suppliers or manufacturers. One such device has appeared in the US, and it’s being promoted as part of a government program. Oops.

The smartphone in question is the Unimax (UMX) U686CL, which you’ve most likely never come across. It runs Android 8.1 Go Edition with 1GB of RAM, 8GB of storage, and a removable 2,000mAh battery. It’s an extremely inexpensive phone offered on Virgin Mobile’s Assurance Wireless program. That’s part of the US government’s Lifeline Assistance Program, which is aimed at helping low-income families afford mobile service. Qualifying customers can get the phone for as little as $35, but they’re also getting some potentially nasty malware.

According to Malwarebytes, the Unimax U686CL comes with our old friend Adups pre-installed. You might remember Adups from the Amazon-exclusive Blu R1 HD, a phone that made waves for its ultra-low $50 price tag. Adups is a firmware OTA update service, but it also has extensive access to the device. The company feigned innocence when called out for the Blu phone, but here it is with more sketchy behavior on the U686CL.

The Unimax U683CL listed on the Assurance Wireless site.
The Unimax U683CL listed on the Assurance Wireless site.

Adups has the ability to install applications on the phone remotely with no user interaction. That alone makes it dangerous, though not explicitly malware. However, it appears someone is using Adups to push specific malware applications to the phone. The worst part is you can’t uninstall Adups because it’s a system app.

Malwarebytes has confirmed that, if left to its own devices, Adups will install a piece of malware called HiddenAds (Trojan.HiddenAds.WRACT). As the name implies, it exists to harass users with pop-up ads that earn money for the operators. Users can uninstall this app if they’ve savvy enough — Malwarebytes has instructions. However, there’s nothing to stop it from reappearing because the Adups software remains active.

Unfortunately, Assurance Wireless has issued a completely tone-deaf response. It says it is in communication with Unimax to understand the root cause of the issue. However, it does not believe the applications in question qualify as malware. Anyone using this device should probably start looking for an alternative.

Continue reading

Android 12 Could Include Major App Compatibility Improvements
Android 12 Could Include Major App Compatibility Improvements

Google has attempted to centralize chunks of Android over the years, and a major component called ART is set to get this treatment in Android 12. The result could be vastly improved app compatibility, which is sure to make everyone happy.

Qualcomm’s New Snapdragon 888 Will Power Flagship Android Phones in 2021
Qualcomm’s New Snapdragon 888 Will Power Flagship Android Phones in 2021

The 888 comes with a new CPU design, integrated 5G, and a massive GPU boost. It's shaping up to be the most significant update to Qualcomm's flagship system-on-a-chip (SoC) in years.

Samsung Starts Rolling Out Galaxy S20 Android 11 Update on Verizon
Samsung Starts Rolling Out Galaxy S20 Android 11 Update on Verizon

Not only does this include the Googley Android 11 enhancements, but it also has numerous Samsung-specific changes as part of the One UI 3.0 revamp.

It Turns Out Huawei’s HarmonyOS Is Still Just Android
It Turns Out Huawei’s HarmonyOS Is Still Just Android

Following the Commerce Department's actions against the Chinese megafirm, Huawei has been unable to use Google services on its new phones. The company's solution was to develop HarmonyOS, but now that we've gotten our first real look at it, one thing is clear: this is just Android with a skin.