Latest news with #T95
Daily Record
22-07-2025
- Daily Record
Millions of Android devices infected with virus- check if yours needs turning off
Millions of Android devices have been affected by the cyber attack An urgent warning has been issued to Android users that millions of devices have been infected with the 'BadBox malware' virus. The bug can allow cyber criminals to make money off infected devices through adware and expose users to ransomware, where they threaten to leak your personal data unless you pay up. The Mirror reports that around 10 million gadgets have even been exposed to the second version of the virus, called BadBox 2.0, but this time around it's not phones that have been attacked. Instead, it's other devices that also use a version of Android including tablets, projectors and streaming boxes. These very cheap and products are being made in China and often come pre-loaded with BadBox. To keep consumers safe, Google is now trying to shut down the cyber-crime operation by filing a lawsuit against those creating and selling the dodgy devices. "This botnet—called the 'BadBox 2.0' botnet—is already the largest known botnet of internet-connected TV devices, and it grows each day,' Google confirmed. 'Without warning, it could be used to commit more dangerous cybercrimes, such as ransomware or distributed denial-of-service ('DDoS') attacks.' As well as Google taking action, the FBI has also had its say on the problems, with the law agency urging consumers to be aware and turn things off if they think they have a device that could be infected. 'The public is urged to evaluate IoT devices in their home for any indications of compromise and consider disconnecting suspicious devices from their networks," the FBI said. Some of the known devices that have been infected with the virus include Android TV boxes with model numbers X88 Pro 10, T95, MXQ Pro, and QPLOVE Q9. If you think you have bought a set-top box from an unofficial store - especially any of the ones mentioned above - it's worth checking to see if it Google Play Protect-certified. Before buying a new device, it's also worth avoiding off-brand gadgets that aren't from a known manufacturer, as they could be targeted by Badbox 2.0. This malware can also be added after the box is installed in homes, so be careful when downloading apps and only access official and protected software. In other cyber hacking news, the aftermath of the infamous M&S hacking scandal has continued with a huge-scale multi-million pound lawsuit against the company. Hackers had obtained customer and staff information that could include phone numbers, home addresses, dates of birth and online ordering histories of millions of people in a cyberattack in April. In May, Thompsons Solicitors launched a class action suit which could result in compensation pay-outs of several hundred pounds per customer. Join the Daily Record WhatsApp community! Get the latest news sent straight to your messages by joining our WhatsApp community today. You'll receive daily updates on breaking news as well as the top headlines across Scotland. No one will be able to see who is signed up and no one can send messages except the Daily Record team. All you have to do is click here if you're on mobile, select 'Join Community' and you're in! If you're on a desktop, simply scan the QR code above with your phone and click 'Join Community'. We also treat our community members to special offers, promotions, and adverts from us and our partners. If you don't like our community, you can check out any time you like. To leave our community click on the name at the top of your screen and choose 'exit group'.
Indian Express
06-06-2025
- Indian Express
Badbox 2.0 malware spreads to more than 1 million Android devices, says FBI
The United States Federal Bureau of Investigation (FBI) has issued a warning saying that the Badbox 2.0 malware campaign has infected more than 1 million Android devices. First discovered in early 2023 on a T95 Android TV box available on Amazon, the malware comes pre-installed with several Chinese-made unbranded Android-powered smart TVs, streaming boxes, tablets and other IoT devices. It was also noted that out of the 1.6 million devices the malware infected, several Android TVs were from known brands like Hisense and Yandex. According to cybersecurity firm Bitsight, the majority of devices infected by Badbox were from countries like India, Russia, China, Brazil, Ukraine and Belarus. Believed to belong to the Triada family of malware, the main goal of the Badbox botnet is financial gain via ad fraud and stealing credentials. The malware not only generates revenue for threat actors by clicking on ads in the background, but also attempts to steal accounts using stolen credentials. To mask its malicious activity, the Badbox botnet routes traffic through infected devices, making it harder to know where the data is being sent. The Federal Office of Information Security (BSI), Germany, said that the malware also targeted devices with old firmware, such as streaming devices, media players and digital picture frames. If your device is overheating, having performance issues like high CPU usage or a change in device settings, chances are it could be hosting the Badbox malware. And while most infected devices are tampered with at the supply chain level, some get infected via the installation of untrusted third-party apps. Badbox 2.0 evolved from the original Badbox network, and over the years, has continued to spread despite international agencies cracking down on the botnet's network and operations. Signs of infection include the system automatically installing shady app marketplaces, disabling Google Play Protect, or streaming devices having unlimited free access to content. Last year, the German authorities had disrupted the malware's botnet network, but despite their attempts, a security researcher said in December that Badbox 'still seems to be very much alive and spreading.' A week after the crackdown, experts claimed that Badbox was still infecting more than 1,92,000 devices. According to HUMAN's Satori Threat Intelligence, the malware had managed to infect more than 1 million consumer devices by March 2025. Infecting more than 222 countries and territories worldwide, these infected devices are not running on Android TV OS but are based on the Android Open Source Project (AOSP), which is not certified by Google Play Protect. The FBI also said that these devices are manufactured in mainland China and shipped worldwide.
