Huawei noticed that security researchers at Kaspersky Lab had reported on a website an Android malware dubbed "Skygofree", which could be installed in Android devices, including Huawei devices (as mentioned in the report). We have launched an in-depth investigation to determine what this means for Huawei devices, and are in close communication with the Kaspersky team as we go through the details of their research. For safety, we strongly urge people not to download any apps or APKs from unknown sources.
According to the current investigation, the antivirus software pre-installed in Huawei mobile phones can identify and remove this malware. Users can access the Phone Manager to upgrade the antivirus database to the latest version and then scan and remove this malware.
The investigation is still ongoing. Huawei PSIRT will keep updating the SN and will give analysis conclusions as soon as possible. Please stay tuned.
2018-01-22 V1.2 UPDATE Update the "Security Notice"
2018-01-19 V1.1 UPDATE Update the "Security Notice"
2018-01-17 V1.0 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.
To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt.
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.