FHN 
A hidden application discovered on Motorola smartphones has sparked privacy and security concerns after researchers found it quietly rerouting Amazon app launches through affiliate tracking links.
The issue was initially noticed by a Motorola Razr 60 Ultra user who observed unusual behavior when opening the Amazon app. Instead of launching normally, the device briefly opened a web browser before redirecting back to Amazon with a tracking identifier attached.
Further investigation revealed that a preinstalled background application named Smart Feed was responsible for the redirects.
Hidden App Injects Affiliate Tracking Codes
Researchers found that the hidden app communicates with an external server identified as devicenative[.]com. The server appears to provide affiliate-related settings and redirect instructions used by the application.
When users tap shopping apps from the launcher, the hidden service intercepts the request and inserts affiliate tracking data before sending users to the final destination.
The observed behavior includes:
- Intercepting Amazon app launches
- Opening browser-based redirect links
- Injecting affiliate tracking parameters
- Connecting to remote servers for configuration updates
- Running silently in the background
Because Android automatically handles supported links inside apps, most users are unlikely to notice the redirection process.
Researchers Warn About Potential Risks
Security experts noted that the technique shares similarities with behaviors commonly seen in adware and mobile malware.
The concerns go beyond affiliate monetization because the same infrastructure could theoretically be modified to redirect users toward malicious websites, phishing pages, or credential theft portals.
Researchers also highlighted several worrying characteristics:
- Hidden system-level persistence
- External server-controlled behavior
- Intent interception techniques
- Limited user visibility or control
- Difficulty removing the application
Since the application relies on remote configuration from external servers, its behavior could potentially change without any operating system update.
The issue has currently been confirmed on the Motorola Razr 60 Ultra, although it is still unclear whether other Motorola devices are affected.
While reports suggest a third-party monetization partner may be involved, researchers argue that smartphone manufacturers remain responsible for software bundled with their devices.
Motorola has not publicly commented on the findings at the time of reporting.
About the Author
