Key Takeaways
1. Researchers from Kaspersky Labs discovered Keenadu malware that embeds itself in device firmware, accessing personal files and banking information without user alert.
2. Keenadu was primarily used for ad fraud and was found in multiple apps on the Google Play Store, leading to their removal.
3. Alldocube acknowledged the risk to older devices, including the Alldocube iPlay 50 Mini Pro tablet, and plans to release software updates for vulnerable models.
4. Affected devices will receive OTA firmware updates by March 5, 2026, and Alldocube will conduct independent audits for security verification.
5. Alldocube aims to implement internal reviews and preventive strategies to address vulnerabilities in the supply chain and enhance future security.
Less than a week ago, a surprising finding was shared by researchers from Kaspersky Labs. They discovered Keenadu, a type of malware that can embed itself within a device’s firmware. This malware has the ability to access system information, which includes personal files, banking information, and even the installation of applications without alerting the user.
Ad Fraud Connection
Fortunately, it turns out that Keenadu was primarily used for ad fraud. This harmful malware was detected in various applications found in the Google Play Store, which have since been removed. According to the researchers, the malware was present in numerous devices, including the Alldocube iPlay 50 Mini Pro gaming tablet. Previously, the company had also reportedly experienced a significant breach impacting its OTA update servers.
Alldocube’s Response
In response to these allegations, Alldocube has stated that they take these matters very seriously and will be releasing software updates for some older devices that are vulnerable. The company has essentially acknowledged that a considerable number of older devices are at risk, many of which are still being used and may have been compromised.
As confirmed by Alldocube, the devices impacted have been listed below:
Devices considered to be in no immediate risk, as per Alldocube’s investigations, can be found in the documents above. Alldocube has assured that OTA firmware updates will be available by March 5, 2026, for the affected devices and also plans to conduct independent audits to verify the security and safety standards of the new firmware.
Future Preventative Measures
Additionally, the company has mentioned that it will carry out internal reviews and implement preventive strategies to avoid such serious situations in the future. They indicated that these vulnerabilities arose due to security issues in the supply chain, although they did not provide further details on this matter.
Source:
Link