Researchers at FireEye, an American security firm, have discovered a new malicious adware family that is rapidly affecting Android devices worldwide. Dubbed as “Kemoge”, the adware is suspected to have originated in China.
FireEye that Kemoge has affected users in more than 20 countries, including governments and large-scale industries, which allows for complete takeover of a user’s Android device. It disguises itself as popular apps via repackaging, so it spreads widely.
Upon initial launch, Kemoge gathers device information and uploads it to the ad server and then it pervasively serves ads from the background. This causes ad banners to pop up on mobile screen regardless of the current activity (ads even pop up when the user stays on the Android home screen).
In addition, the adware registers MyReceiver in the AndroidManifest to automatically launch when the user unlocks the device screen or the network connectivity changes. Researchers have provided a detailed report explaining how ultimately aps.kemoge.net is contacted for commands.
To dodge detection, Kemoge does not constantly communicate to the server. Instead, it only asks for commands on the first launch or after 24 hours from its last command. In each communication, it first posts the IMEI, IMSI, storage info, and installed app info to the remote server.
FireEye observed that all samples (examples of Kemoge) contain simplified Chinese characters in the code and that one sample is also published on Google Play.
The security firm suggests:
- Never click on suspicious links from emails/SMS/websites/advertisements.
- Don’t install apps outside the official app store.
- Keep Android devices updated to avoid being rooted by public known bugs. (Upgrading to the latest version of OS will provide some security, but it does not guarantee that you will remain protected.)


Samsung Q2 Profit Seen Soaring as AI Memory Demand Keeps Chip Prices Elevated
OpenAI Proposes 5% U.S. Government Stake Amid AI Policy Talks
SK Hynix’s $28B U.S. IPO Draws Strong Demand as AI Chip Boom Fuels Investor Interest
Super Micro Employees Detained in Taiwan AI Server Export Investigation
Kioxia Bets on AI Memory Boom With Next-Gen NAND Production in Japan
China 618 Smartphone Sales Drop 13% as Higher Prices Hurt Demand, Huawei Gains Market Share
Chinese Chip Stocks Jump as Apple Reportedly Tests CXMT Memory Chips for China Devices
Zhipu AI Stock Jumps on Report of Custom AI Chip Development Plans
WiseTech Global Shares Surge as Richard White Steps Down as Executive Chair
Switch Seeks $2 Billion Funding at Nearly $50 Billion Valuation Ahead of Potential IPO
Apple Tests China's CXMT Memory Chips as DRAM Maker Gains Global Market Share
LG Energy Solution Q2 Profit Plunges 77% Despite Revenue Growth on Weak EV Demand
Kuaishou Stock Jumps as Kling AI Secures $2 Billion Funding Round
Smartphones are helping filmmakers tell the stories the movie industry overlooks
Meta Says States Seek $1.4 Trillion in Penalties Over Teen Social Media Addiction Lawsuit
Bank of America Upgrades T-Mobile to Buy, Says LEO Satellite Fears Are Overdone 



