Question Xiaomi Redmi Note 10 Pro suspected malware

H4wks

Active member
Apr 4, 2024
28
4
3
Visit site
Hello, I suspect there is some form of malware on my device, which is draining the battery really fast. After doing a factory reset the issue is resolved for about 1-2 weeks and then comes back. I checked what was draining the battery the most and it was the Fitbit app, so I deleted it, but the battery still got drained by Whatsapp. Before doing a factory reset, I changed my google account's password and logged out of all devices. I also suspect that my home WiFi network could be compromised, and if that is the case, the malware probably replicates itself across my connected devices.
 

B. Diddy

Senior Ambassador
Moderator
Mar 9, 2012
166,622
6,331
113
Visit site
What kind of battery drain are you seeing? At what rate is it draining?

When it's draining, what kind of battery usage statistics are the apps you're suspicious of showing?

Have you looked at the System apps/services in the Battery Usage menu, to see if something there is unusually high? One of the more common culprits is Cell Standby -- if that shows high battery usage, that can indicate poor cell signal, which can drain battery (even if you have good wi-fi).

Why do you think your home wi-fi network could be compromised? Is your network secured by a password? If it is, then it's very unlikely to be hacked.

It's actually quite difficult for people to be "hacked", unless they have poor security habits. Review these:

“I’ve been hacked” - Android Forums at AndroidCentral.com
[GUIDE] How To Avoid Malware - Android Forums at AndroidCentral.com
 

rvbfan

Well-known member
Jan 17, 2015
1,949
1,843
113
Visit site
Hello, I suspect there is some form of malware on my device, which is draining the battery really fast. After doing a factory reset the issue is resolved for about 1-2 weeks and then comes back. I checked what was draining the battery the most and it was the Fitbit app, so I deleted it, but the battery still got drained by Whatsapp. Before doing a factory reset, I changed my google account's password and logged out of all devices. I also suspect that my home WiFi network could be compromised, and if that is the case, the malware probably replicates itself across my connected devices.
It's probably an app that you have installed.
I remember back in the day I had thru the roof data usage and battery drain. This was back when 500mb a month was living the high life. Turns out it was the Yahoo mail app constantly looking for new emails and querying play store for updates. Worth a look.
 

H4wks

Active member
Apr 4, 2024
28
4
3
Visit site
What kind of battery drain are you seeing? At what rate is it draining?

When it's draining, what kind of battery usage statistics are the apps you're suspicious of showing?

Have you looked at the System apps/services in the Battery Usage menu, to see if something there is unusually high? One of the more common culprits is Cell Standby -- if that shows high battery usage, that can indicate poor cell signal, which can drain battery (even if you have good wi-fi).

Why do you think your home wi-fi network could be compromised? Is your network secured by a password? If it is, then it's very unlikely to be hacked.

It's actually quite difficult for people to be "hacked", unless they have poor security habits. Review these:

“I’ve been hacked” - Android Forums at AndroidCentral.com
[GUIDE] How To Avoid Malware - Android Forums at AndroidCentral.com
In the thread https://forums.androidcentral.com/threads/“i’ve-been-hacked”.966023/#post6908062 you mention "
  • Take advantage of 2-factor authentication wherever you can, but avoid SMS as the 2nd factor if possible, since that can be intercepted. It's best to use an authenticator app like Google Authenticator or Authy, but if that's not an option, then a voice call for the 2nd factor is the next best option."
How can using SMS as the 2nd factor be intercepted? I use an old Nokia phone without internet connectivity or Bluetooth as my 2-factor authentication device, on which I receive SMS messages whenever I want to log in.
 

B. Diddy

Senior Ambassador
Moderator
Mar 9, 2012
166,622
6,331
113
Visit site
In the thread https://forums.androidcentral.com/threads/“i’ve-been-hacked”.966023/#post6908062 you mention "
  • Take advantage of 2-factor authentication wherever you can, but avoid SMS as the 2nd factor if possible, since that can be intercepted. It's best to use an authenticator app like Google Authenticator or Authy, but if that's not an option, then a voice call for the 2nd factor is the next best option."
How can using SMS as the 2nd factor be intercepted? I use an old Nokia phone without internet connectivity or Bluetooth as my 2-factor authentication device, on which I receive SMS messages whenever I want to log in.
There's a lot written about this, but here's a sample: https://www.seven.io/en/blog/2fa-via-sms/. The phone doesn't necessarily have to be connected to the web for it to be vulnerable. That being said, SMS is still better than nothing.
 

H4wks

Active member
Apr 4, 2024
28
4
3
Visit site
It's confirmed malware, which is embedded in the firmware I think. When I am speaking with someone over the phone or Whatsapp, there's a third voice interfering in the connection. I did a factory reset, after which I used mobile data, instead of connecting to WiFi, but the malware persists. I even created a new Google account. I think my only option would be to buy a new phone.
 

B. Diddy

Senior Ambassador
Moderator
Mar 9, 2012
166,622
6,331
113
Visit site
I think that'd pretty far-fetched. Xiaomi is a prominent and pretty well-respected manufacturer. If it were some no-name or really off-brand Chinese manufacturer, then maybe there'd be more concern.

When you say it's "confirmed" malware, do you mean it's being flagged by an antimalware app? Keep in mind that those kinds of apps often give false positives.
 

H4wks

Active member
Apr 4, 2024
28
4
3
Visit site
I think that'd pretty far-fetched. Xiaomi is a prominent and pretty well-respected manufacturer. If it were some no-name or really off-brand Chinese manufacturer, then maybe there'd be more concern.

When you say it's "confirmed" malware, do you mean it's being flagged by an antimalware app? Keep in mind that those kinds of apps often give false positives.
I didn't mean Xiaomi, but the mobile operator, which is using Vofafone's network(in Germany)
 

H4wks

Active member
Apr 4, 2024
28
4
3
Visit site
I think that's equally unlikely. Have you spoken to the mobile provider's support team about this? If your main concern is hearing other conversations on your call, that sounds more like crosstalk: https://resources.pcb.cadence.com/b...erence-and-crosstalk-in-mobile-communications
Yes, I spoke with the support team. They said they would reset my network, but that didn't help. After that I bought a new SIM card(from the same operator) and transferred my number to it, which did not help either. I understand what you mean with crosstalk. My concern is that someone deliberately interferes in my conversations when I'm speaking with someone. I know it might sound crazy, but this happened several times while phoning different people.
 

H4wks

Active member
Apr 4, 2024
28
4
3
Visit site
I don't think any of this is deliberate. Maybe it has to do with how the MVNO is accessing the cell towers. If the issue is persistent, maybe try a different MVNO or switch to a major carrier.
I just bought a new Xiaomi Redmi 13, ordered a new SIM card and used only mobile data, no Wi-Fi. The same is happening. I am sure it's the MVNO now.
 

Forum statistics

Threads
947,470
Messages
6,934,008
Members
3,160,794
Latest member
Robert-42