PANews reported on April 3rd that according to Cointelegraph, cybersecurity company Kaspersky discovered thousands of counterfeit Android smartphones sold online were pre-installed with malware designed to steal cryptocurrencies and other sensitive data. These low-priced Android devices are infested with a variant of the Triada Trojan virus, which can infect all processes and allow attackers to "almost completely control" the device. Once attackers access the device through this Trojan virus, they can replace wallet addresses to steal cryptocurrencies. Additionally, the virus can steal user account information and intercept SMS messages, including two-factor authentication texts. So far, 2,600 confirmed infection cases related to this scam have been identified across different countries, with most Russian users being affected in the first three months of 2025. To avoid becoming a victim of such scams, the best practice is to purchase devices only from legitimate dealers and immediately install security solutions after purchase.