New Keenadu Backdoor Exposes Vulnerabilities in Android Tablet Firmware
Kaspersky uncovers Keenadu, a firmware backdoor in Android tablets that compromises device security through signed OTA updates.
Kaspersky has identified a significant security threat in the form of a new backdoor, termed Keenadu, which has been found embedded in the firmware of various Android tablets, including models from Alldocube. This backdoor, which is capable of silently harvesting sensitive data and exerting remote control over the affected devices, is introduced during the firmware build phase, raising serious concerns about the integrity of signed Over-The-Air (OTA) updates. The implications are particularly troubling given that such vulnerabilities can be exploited without the user's awareness, potentially impacting a wide range of devices across different brands.
For businesses, the discovery of Keenadu underscores the necessity for rigorous security protocols throughout the firmware development and update processes. Organizations must reassess their supply chain security, especially in relation to firmware updates, to mitigate risks associated with compromised devices. This incident highlights the critical intersection of cybersecurity and AI, as businesses increasingly rely on connected devices. Ensuring robust cybersecurity measures is imperative not only to protect sensitive information but also to maintain customer trust in an era where integrated technology is ubiquitous.
---
*Originally reported by [The Hacker News](https://thehackernews.com/2026/02/keenadu-firmware-backdoor-infects.html)*