According to BlockBeats, cybersecurity firm Kaspersky Lab has identified a significant number of counterfeit Android phones pre-installed with malicious software being sold online at low prices. These devices are embedded with the Triada Trojan virus, capable of stealing cryptocurrencies and other sensitive data.
Kaspersky expert Dmitry Kalinin reported that attackers have successfully transferred approximately $270,000 worth of various cryptocurrencies by replacing wallet addresses. The actual losses could be higher, as the attackers also target privacy-focused cryptocurrencies like Monero. There are currently 2,600 confirmed cases of infection, primarily concentrated in Russia. The Trojan can infiltrate the firmware before the device reaches the user, intercepting two-factor authentication messages and stealing account information.
Kaspersky advises users to purchase devices only from legitimate sources and to install security solutions immediately after purchase.
