Android TV Streaming Boxes Riddled with Backdoor Malware 

Written by

Geoff Halstead

Published on

February 9, 2024

Reading time

1 min.

Well, this one certainly wins the prize this week! Wired Magazine published a round-up of multiple cybersecurity researchers and the cybersecurity firm Human Security on a wide reaching scheme executed on dozens of models of Android Streaming boxes to plant backdoors to either state or criminal threat actors in China. “Human Security researchers found seven Android TV boxes and one tablet with the backdoors installed, and they’ve seen signs of 200 different models of Android devices that may be impacted.”

Oops.

Google has responded and taken steps to remove these apps and the boxes from their stores and access. While this may seem incredible, it is just the latest example of supply chain attacks and the pervasive threat of hardware that is manufactured in China to the privacy and security of every day citizens. Malware is no longer just for cracking into the Crown Jewels of big organizations now: it is coming after all of us.

Wired Magazine excerpt:

WHEN YOU BUY a TV streaming box, there are certain things you wouldn’t expect it to do. It shouldn’t secretly be laced with malware or start communicating with servers in China when it’s powered up. It definitely should not be acting as a node in an organized crime scheme making millions of dollars through fraud. However, that’s been the reality for thousands of unknowing people who own cheap Android TV devices.

In January, security researcher Daniel Milisic discovered that a cheap Android TV streaming box called the T95 was infected with malware right out of the box, with multiple other researchers confirming the findings. But it was just the tip of the iceberg. Today, cybersecurity firm Human Security is revealing new details about the scope of the infected devices and the hidden, interconnected web of fraud schemes linked to the streaming boxes.

Wired: Your Cheap Android TV Streaming Box May Have a Dangerous Backdoor

Read the report by Human Security:

Related Blogs

WiFi

Alert: Two major flaws expose WiFi networks to attack, affects billions of users

Reading Time: 5 min.

Summary Two major flaws in open-source software could enable bad actors to break into password-protected home and enterprise WiFi networks. The…

Read more

The Internet Cannot be Defended from the PRC

Reading Time: 4 min.

The NSA release this week a comprehensive report with explicit details of the extent of the activity and ‘Tradecraft” of…

Read more
Keep It Simple

KISS: Keep It Simple Security

Reading Time: 7 min.

Faction Networks changes the paradigm and enables K.I.S.S. by going back to the foundation of actually securing networking, and then…

Read more
Linux XYZ Utils Back Door

The System is Blinking Red

Reading Time: 6 min.

The “Good Enough” strategy in Cyber Security is not going to cut it any more. The time frame here is…

Read more

How Could This Happen?! A Deep Dive into the Change Healthcare Attack

Reading Time: 11 min.

It’s not an aberration – it WILL happen again As many of you have no doubt heard or read about,…

Read more
Food Manufacturing

Not Just ‘Factories’ – 40% of Food & Beverage Manufacturers Impacted by Ransomware Attack

Reading Time: 1 min.

JSB Foods ransomware incident just a prominent example According to Claroty, more than 40% of food and beverage-sector respondents had…

Read more
Hacking data

Why a 2nd Class Air National Guardsman Could Read the Pentagon’s Briefings on Ukraine’s War Plan

Reading Time: 3 min.

Most people by now have heard of Jack Teixeira, or if not at least the infamous story of how a…

Read more
Smart UPS Devices

Uninterruptible Power Supply (UPS) Devices In the Bullseye for Hackers

Reading Time: 2 min.

Weak Protocols and Built-in Back Doors Make These Inviting Targets The Cybersecurity and Infrastructure Security Agency (CISA) and the Department…

Read more

Nobody Would Have Agreed to This

Reading Time: 9 min.

Even George Orwell Could Not Have Imagined the World We Live in Today Let’s Start with a Thought Experiment If…

Read more

5 Easy Cybersecurity Steps to Radically Reduce Your Risk NOW

Reading Time: 9 min.

For most small to mid-sized business owners, just keeping business and operations running is the primary concern. When one looks…

Read more

Warning: Undefined array key 0 in /var/www/factionnetworks/wp-content/themes/bricks/includes/elements/code.php(222) : eval()'d code on line 19

Warning: Attempt to read property "cat_ID" on null in /var/www/factionnetworks/wp-content/themes/bricks/includes/elements/code.php(222) : eval()'d code on line 19

Warning: Undefined array key 0 in /var/www/factionnetworks/wp-content/themes/bricks/includes/elements/code.php(222) : eval()'d code on line 20

Warning: Attempt to read property "cat_name" on null in /var/www/factionnetworks/wp-content/themes/bricks/includes/elements/code.php(222) : eval()'d code on line 20

Android TV Streaming Boxes Riddled with Backdoor Malware 

Well, this one certainly wins the prize this week! Wired Magazine published a round-up of multiple cybersecurity researchers and the cybersecurity firm Human Security on a wide reaching scheme executed on dozens of models of Android Streaming boxes to plant backdoors to either state or criminal threat actors in China.…

Reading Time: 1 min.

Well, this one certainly wins the prize this week! Wired Magazine published a round-up of multiple cybersecurity researchers and the cybersecurity firm Human Security on a wide reaching scheme executed on dozens of models of Android Streaming boxes to plant backdoors to either state or criminal threat actors in China. “Human Security researchers found seven Android TV boxes and one tablet with the backdoors installed, and they’ve seen signs of 200 different models of Android devices that may be impacted.”

Oops.

Google has responded and taken steps to remove these apps and the boxes from their stores and access. While this may seem incredible, it is just the latest example of supply chain attacks and the pervasive threat of hardware that is manufactured in China to the privacy and security of every day citizens. Malware is no longer just for cracking into the Crown Jewels of big organizations now: it is coming after all of us.

Wired Magazine excerpt:

WHEN YOU BUY a TV streaming box, there are certain things you wouldn’t expect it to do. It shouldn’t secretly be laced with malware or start communicating with servers in China when it’s powered up. It definitely should not be acting as a node in an organized crime scheme making millions of dollars through fraud. However, that’s been the reality for thousands of unknowing people who own cheap Android TV devices.

In January, security researcher Daniel Milisic discovered that a cheap Android TV streaming box called the T95 was infected with malware right out of the box, with multiple other researchers confirming the findings. But it was just the tip of the iceberg. Today, cybersecurity firm Human Security is revealing new details about the scope of the infected devices and the hidden, interconnected web of fraud schemes linked to the streaming boxes.

Wired: Your Cheap Android TV Streaming Box May Have a Dangerous Backdoor

Read the report by Human Security:

If you liked this post, Share it on: