You are viewing a single comment's thread.

view the rest of the comments →

0
1

[–] ttyS0 0 points 1 point (+1|-0) ago  (edited ago)

Also older devices with well-known security vulnerabilities which are commonly used to root them. The malware app first uses those to gain root privileges which in turn are used to persist it as a privileged system app on the normally read-only system partition, which is resistant against a factory reset (= data partition wipe).