HackDig : Dig high-quality web security articles

Gigaset Android smartphones infected with malware after supply chain attack

2021-04-07 06:18

A new supply chain attack made the headlines, threat actors compromised at least one update server of smartphone maker Gigaset to deliver malware.

The German device maker Gigaset was the victim of supply chain attack, threat actors compromised at least one server of the company to deliver malware.

Gigaset AG, formerly known as Siemens Home and Office Communication Devices, is a multinational corporation based Germany. The company is most active in the area of communications technology. Gigaset manufactures DECT telephones. In 2018, it had 888 employees, revenue of 280 million Euro and sales activities in approximately 70 countries.

The supply chain attack took place around April 1, 2021, the malware was delivered to the Android devices of the German vendor. According to the blog BornCity, multiple users have been reporting malware infections, their devices were infected with adware designed to display unwanted and invasive ads. Many Android users reported the infections on the Google support forums

The German website heise.de published a list of the unwanted apps (or package names) and services that have been installed on the devices of the users. The following list is not complete and other apps could be present of the impacted devices:

Below the list of potential consequences of the infections reported by BornCity:

  • Browser windows suddenly open with advertisements or redirect to gambling sites
  • WhatsApp accounts are blocked (due to critical activities)
  • Facebook accounts may be taken over completely
  • SMS messages may be sent automatically
  • The device goes into “do not disturb” mode
  • The battery is drained quickly
  • The smartphone becomes slow

“Initial indications from affected users suggest that data may also have been deducted from the smartphones. I had reported extensively on this issue in the blog post German Gigaset Android Update Server probably delivers malware (more posts are only available within my German blog).” states BornCity website.

Read:91 | Comments:0 | Tags:Breaking News Cyber Crime Android Gigaset malware android

“Gigaset Android smartphones infected with malware after supply chain attack”0 Comments

Submit A Comment

Name:

Email:

Blog :

Verification Code: