Security

650 readers

5 users here now

A community for discussion about cybersecurity, hacking, cybersecurity news, exploits, bounties etc.

Rules :

All instance-wide rules apply.
Keep it totally legal.
Remember the human, be civil.
Be helpful, don't be rude.

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

founded 1 year ago

MODERATORS

LinearArray

1.3 million Android-based TV boxes backdoored; researchers still don’t know how (arstechnica.com)

submitted 1 month ago by kryllic to c/security

12 comments fedilink hide all child comments

Researchers still don’t know the cause of a recently discovered malware infection affecting almost 1.3 million streaming devices running an open source version of Android in almost 200 countries.

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 11 points 1 month ago (3 children)

This is about the boxes you plug into the TV, like a Roku, or Fire TV, except it's the cheap Chinese white box rebranded Android TV boxes you buy on places likeAmazon, Ali, and eBay.

[–] [email protected] 4 points 1 month ago

Ah, so it is. My bad

[–] BB_C 2 points 1 month ago

They don't even run Android TV. They run a modified (normal) Android. This is well known, but the article also mentions it.

[–] [email protected] 2 points 1 month ago (1 children)

So basically a non-issue unless you just plug the cheapest streaming box you can get your hand on into your devices.

[–] [email protected] 4 points 1 month ago* (last edited 1 month ago) (1 children)

I didn't say they're the cheapest, just that the boxes I'm personally aware of with this problem are white box rebranded ATVs.

But I haven't looked through the entire list, so it's entirely possible that some other more well-known and "respectable" device brands are also compromised. If you have an Android TV box, you should probably search the list to find out.