Kaspersky has reported the discovery of Keenadu, an Android backdoor embedded in firmware across multiple tablet brands. This malware can control apps and harvest data, with the compromise occurring during the firmware build process, raising supply chain security concerns.

Score total

1.58

Momentum 24h

Posts

Origins

Source types

Duplicate ratio

Why now

Kaspersky published a detailed report on Keenadu and its behavior.
Multiple security outlets amplified the findings in the same news cycle.
The report follows Kaspersky’s earlier firmware-level Android threat investigations.

Why it matters

Firmware-embedded backdoors can affect many apps and be harder to remediate.
Build-phase insertion suggests upstream/supply-chain exposure beyond app installs.
Multi-brand impact increases potential blast radius for affected tablet users.

LLM analysis

Topic mix: lowPromo risk: lowSource quality: high

Recurring claims

Keenadu backdoor allows control over apps and data harvesting.

How sources frame it

The Hacker News: neutral

All evidence

Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates

thehackernews · thehackernews.com · 2026-02-17 16:41 UTC

New Keenadu backdoor found in Android firmware, Google Play apps

bleepingcomputer_all · bleepingcomputer.com · 2026-02-17 14:05 UTC

Firmware-level Android backdoor found on tablets from multiple manufacturers

Help Net Security · helpnetsecurity.com · 2026-02-17 12:21 UTC

Divide and conquer: how the new Keenadu backdoor exposed links between major Android botnets

Securelist (Kaspersky) · securelist.com · 2026-02-17 09:00 UTC

Show filters & breakdown

Posts loaded: 0Publishers: 4Origin domains: 4Duplicates: -

Platform

Publisher

Origin domain

Relevance tier

Duplicates only

Showing 4 / 0

Top publishers (this list)

thehackernews (1)
bleepingcomputer_all (1)
Help Net Security (1)
Securelist (Kaspersky) (1)

Top origin domains (this list)

thehackernews.com (1)
bleepingcomputer.com (1)
helpnetsecurity.com (1)
securelist.com (1)