In this case, we can go by the saying “you get what you pay for.” This is something more common than what we think. Security experts have found an important amount of models that run Android with a built-in banking Trojan. This is yet again another episode starring Android devices.

The specific threat found is Triada, a powerful malware with the sole mission of stealing the payment information that is typed using the OS’ keyboard or saved on the device’s memory. This information has been provided by Dr. Web, a security vendor.

As for the number of devices, we have to be more specific. We are talking about 42 models on which the Trojan has been detected, although security experts do not rule out the number being higher.

Android devices infected by this banking Trojan

Let’s see one important aspect: to know what manufacturers have been affected. As we have already told you, this information is provisional and it looks far from being definitive. The manufacturers’ models on which the banking Trojan Triada has been found are Leagoo, Doogee, Vertex, Advan, BQ and Cherry Mobile. Out of all of them, maybe Doogee is the most widely known by users in Spain.

But this problem is even more complicated. The threat is not found in every device. There are some countries where the number of affected smartphones is higher. There are countries in Europe that have been affected, especially Russia, which is where most affected devices have been found. We have to bear in mind that some of these manufacturers also export their devices to our country.

Let’s talk about the Triada Malware

It is a very powerful threat. Experts rate it as one of the most well-rounded threats regarding Android. They say it can root the device without the user noticing it. Once this is done, the threat is capable of infecting Android’s core processes, so we can say that easily removing it from the device is impossible. The only solution available is to wipe the device entirely.

Its origin

It certainly is really important to know where the problem comes from. As it involves several manufacturers, the “sabotage” theory during the assembly process can be tossed aside. So, the only thing left to do is to find a common element. It seems that a company that developed a built-in software is the culprit.

We will show you a list of affected devices below:

Leagoo M5
Leagoo M5 Plus
Leagoo M5 Edge
Leagoo M8
Leagoo M8 Pro
Leagoo Z5C
Leagoo T1 Plus
Leagoo Z3C
Leagoo Z1C
Leagoo M9
ARK Benefit M8
Zopo Speed 7 Plus
Doogee X5 Max
Doogee X5 Max Pro
Doogee Shoot 1
Doogee Shoot 2
Tecno W2
Homtom HT16
Umi London
Kiano Elegance 5.1
iLife Fivo Lite
Mito A39
Vertex Impress InTouch 4G
Vertex Impress Genius
myPhone Hammer Energy
Advan S5E NXT
Advan S4Z
Advan i5E
Tesla SP6.2
Cubot Rainbow
Haier T51
Cherry Mobile Flare S5
Cherry Mobile Flare J2S
Cherry Mobile Flare P1
Pelitt T1 PLUS
Prestigio Grace M5 LTE
BQ 5510

As you can see, it is a long list on which we see devices that are popular among users looking for a low-cost Android device. By saying this, we do not mean these devices should be banned, but some precautions should be taken when choosing any manufacturer.