Warning: 5 million Samsung, OPPO, Vivo smartphones ... are infected with malware and this is how to check and remove

A large-scale malware distribution campaign has just been discovered and it is affecting nearly 5 million smartphones of major brands worldwide including Honor, Huawei, Xiaomi, OPPO, Vivo, Samsung and GIONEE.

This malware is very dangerous and is called RottenSys . Its goal is to control all of Android's rights to install additional software or get user information. There have been 4,964,460 equipment devices infected, as of March 12.

RottenSys disguises under a built-in 'System WiFi service' application in millions of smartphones, inserted by a party in the supply chain.

According to the researchers, all malware-containing devices come from Hangzhou-based distributor Tian Pai, but they are not sure if Tian Pai is related to this malware.

Symptoms of the device when RottenSys infection is an ad that displays immediately on the main screen, in the form of a pop up or full screen to get advertising money. The malware displayed ads up to 13,250,756 times and among them there were 548,822 clicks on ads in just 10 days.

Even, this malware installs itself applications and other interfaces on the device on some devices.

Instructions to check if the device has RottenSys malware and how to remove it

To test, go to the application manager and find out if there are application packages containing malware. If so, remove those applications immediately.

List of application packages containing malware:

1. com.android.yellowcalendarz (每日 黄 历)
2. com.changmi.launcher (畅 米 桌面)
3. com.android.services.securewifi (系统 WIFI 服务)
4. com.system.service.zdsgt

See more:

1. Discover a new kind of malicious code that can record the phone call to extort money
2. Detects two serious vulnerabilities on uTorrent that can help hackers execute malicious code or view download history on your computer
3. Warning: A new code of virtual money training is spreading strongly in Vietnam