A month ago, we reported that some Chinese-made phones are vulnerable to a secret software that tracks behaviors. Because of that, Blu has kicked out the Chinese spyware from their smartphones and instead turned to Google. One particular brand affected by this issue was Huawei who was reported to be using ADUPS software. This Chinese OEM immediately reached out to us and said that the company mentioned was not in the list of their approved suppliers. Huawei claimed that they “have never conducted any form of business with them”.
This is quite an intriguing issue and we know that most people in the Android community won’t stop asking around for answers and possible solution since it’s mobile security we’re talking about. Another third-party group known as Trustlook Mobile Security looked into the problem and has successfully identified more information about the ADUPS data theft issue.
The firm said they know the time period: it started as early as July and continued for about six months. About 43 phone manufacturers have used ADUPS’ firmware during this period and there were a total of 91 more affected versions of ADUPS. These are just some main points of the report.
To start the investigation, Trustlook Mobile Security looked into over 1,904 versions of the ADUPS firmware apps. The collection of data without consent of the user began in July which was discovered by Kryptowire in November. The BLU R1 plus five other models were discovered to be affected. The complete list of affected devices included 43 OEMs. These phones have the ADUPS’ Firmware-Over-The-Air (FOTA) technology so the users’ privacy and security may have been breached.
To help, Trustlook is updating its own mobile security app to allow it to check all versions of the ADUPS apps. Feel free to download the app from the Play Store especially if you own a smartphone from any of the brands in the list below: Aaron Electronics, Aeon Mobile, All Win Tech, Amoi Technology, Archos, AUX, Bird, BLU. Cellon, Coship Mobile, DEWAV Communication Group, DEXP Digital Experience, Eastaeon Technology, Electronic Technology Co., Gionee, GOSO, Hisense, Hongyu, Huaqin, Huiye, Inventec Corporation, Konka Group Co, Lenovo, Logicom, Longcheer, Malata Mobile, Mediatek, Helio, Prestigio, Ragentek, RDA Micro, Reallytek, RUIO, Sanmu, Sprocomm, Tinno, Uniscope, VSUN, Water World Technology Co., Wind Communication, WingTech, Yifang Digital, Zhuhai Quanzhi, and ZTE.
UPDATE: ZTE USA got in touch with us to say this:
“We confirm that no ZTE devices in the U.S. have ever had the Adups software cited in recent news reports installed on them, and will not. ZTE always makes security and privacy a top priority for our customers. We will continue to ensure customer privacy and information remain protected.”
Download Trustlook Mobile Security apps from the Google Play Store
Video full infographic HERE