Hackable 'backdoor' found in some high-end Chinese smartphones

Published December 19, 2014 1:00pm

Some high-end smartphones made by a Chinese firm have been found to have a backdoor that could potentially allow attacks, a security vendor said.

PaloAlto Networks said it discovered the backdoor on many high-end phones made by Coolpad, including one allegedly installed and operated by Coolpad itself.

The backdoor, which the security firm dubbed CoolReaper, can:

Download, install, or activate any Android application without user consent or notification
Clear user data, uninstall existing applications, or disable system applications
Notify users of a fake over-the-air (OTA) update that does not update the device, but installs unwanted apps
Send or insert arbitrary SMS or MMS messages into the phone
Dial arbitrary phone numbers
Upload information about device, its location, application usage, calling and SMS history to a Coolpad server

"We expect device manufacturers to install software on top of Android that provides additional functionality and customization, but CoolReaper does not fall into that category. Some mobile carriers install applications that gather usage statistics and other data on how their devices are performing. CoolReaper goes well beyond this type of data collection and acts as a true backdoor into Coolpad devices," the firm said.

It also noted Coolpad customers in China had reported unwanted applications and push-notification ads from the backdoor.

"Complaints about this behavior have been ignored by Coolpad or deleted," it said.

On the other hand, it said Coolpad modified the Android OS in many of its ROMs, with the modifications hiding CoolReaper components.

"The changes Coolpad made to the Android OS to hide the backdoor from users and antivirus programs are unique and should make people think twice about the integrity of their mobile devices," it said. — Joel Locsin/TJD, GMA News

Tags: cybersecurity, smartphones