Android is the target of an ultra dangerous malware called Xiny, reveal the researchers of Dr Web. In operation since 2015, this trojan is almost impossible to delete from infected smartphones.

In 2016, Dr Web’s cybersecurity experts spotted a malware dubbed Android.Xiny.5260 in tens of millions of Android devices. Despite their efforts, the researchers failed to remove all traces of the malware.

Half a billion Android smartphones are vulnerable

Four years later, experts believe the malware is still active. Xiny exclusively targets smartphones running Android 5.1 or earlier. Phones that have installed a newer version of Android should, therefore, fear nothing. If you bought your smartphone recently, you are safe. Nevertheless, 25% of Android smartphones in circulation remain vulnerable, i.e. half a billion devices, underlines Dr Web. That’s a huge number.

According to the researchers, the Trojan horse is hidden in apparently harmless applications, available on the Google Play Store or on third-party platforms. Once present on the victims’ phones, Xiny remotely downloads dozens of unwanted applications. The hackers behind Xiny quickly recover significant revenues from developers anxious to artificially inflate their user numbers. This process will also significantly slow down the performance of the device.

So far, the operation of Xiny has been nothing unusual. However, unlike less sophisticated malware, this one remains on the device even if the user decides to delete it. In case of deletion, the APK files intended for the installation of Xiny remain hidden in the memory of the smartphone without the knowledge of its victims.

To get rid of Xiny, there is only one solution: flash a system ROM on your phone. This operation will reset your smartphone. So don’t forget to make a backup of it before taking action. Have you ever encountered a malware of this kind? We await your testimony, let us know in the comment box below.