mobilespy.atspace.co.uk
Mobile Menace Monday: upping the ante on Adups | Advanced Mobile Spy Software
Adups is back on our radar. The same China-based company caught collecting an abundance of user data and creating a backdoor on mobile devices in 2016 has another malicious card to throw down. This time, it's an auto installer we detect as Android/PUP.Riskware.Autoins.Fota. We thought they cleaned up their act When the headlines about Adups came out in 2016, it forced the company to update a component known under the package name com.adups.fota. The new version was clean of wrongdoing, and we all went about on our collective our ways. However, it appears there was a lingering component we overlooked. It comes with the package names com.adups.fota.sysoper and com.fw.upgrade.sysoper, appears in the app list as UpgradeSys, and has the filename FWUpgradeProvider.apk. They call it FWUpgradeProvider An auto-installer is only threatening if it has system-level rights, which (unfortunately), FWUpgradeProvider does. "How?" you may ask. Because it comes preinstalled on various devices. Thus, by