> TritonInfoSec News
Home / Feb 18, 2026 / Story
0
#6 The Hacker News general February 17, 2026 at 19:41 UTC

Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates

By [email protected] (The Hacker News)

AI Summary

Kaspersky discovered Keenadu, an Android firmware backdoor embedded during the build phase that affects devices from brands including Alldocube. The malware uses signed OTA updates for persistence and can harvest data while remotely controlling device behavior at the firmware level. This supply chain compromise demonstrates sophisticated pre-installation malware targeting Android tablets through compromised firmware build processes.

Read full article → https://thehackernews.com/2026/02/keenadu-firmware…

Relevance score: 91.0/100

# More from February 18

  1. 1
    AI Found Twelve New Vulnerabilities in OpenSSL Schneier on Security
  2. 2
    Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024 The Hacker News
  3. 3
    CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update The Hacker News
  4. 4
    Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware The Hacker News
  5. 5
    Microsoft says bug causes Copilot to summarize confidential emails BleepingComputer
  6. 7
    Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies The Hacker News
  7. 8
    Chinese hackers exploiting Dell zero-day flaw since mid-2024 BleepingComputer
  8. 9
    Poland Energy Survives Attack on Wind, Solar Infrastructure Dark Reading
  9. 10
    Polish police detain alleged cybercriminal with Phobos ransomware ties