Naijacrux News:Welcome to Naijacrux Online Forum..Great Place To Get Tips Facts Updates and More ,Interact Discuss & Learn With Others !!.remember to register to enjoy much more update!!!New Updates From Naijacrux -Naijacrux Is Now Mobile Friendly - Download Our Android App On Our Forum Rules And Announcement Section.Our App Will be Live On Google Playstore And IOS Store Soon Aswell - CLICK HERE TO DOWNLOAD NAIJACRUX ANDROID APP !!! Dear Guest And Naijacrux Dedicated Members,!!! ,  You Can Now Receive Naijacrux Weekly New Post and Updates Via Email by Subscribing To Our Newsletter Using The Subscribe Button Above The Naijacrux Announcement And Discussion At The Top Home Page!!Never Miss A New Post And Updates Again.!Thank You.  !!!YOU ARE WELCOME TO NAIJACRUX INFORMATIVE LEARNING AND INTERACTIVE FORUM.This Website is an Intensive Forum of Learning We recommend you Register & Login to Enjoy much free stuffs ::>>Also remember to Update your Profile Immediately after registration. Thank you!>>>!!!!To All Advertisers And Patronizers, kindly Send Mail To [email protected] For adverts Placement. thanks!!!


Author Topic: This Android Malware Is Attacking Smart Home Devices Within the 'Internet of Things'  (Read 1975 times)

0 Members and 1 Guest are viewing this topic.

Offline Nairaland

  • Global Moderator
  • Sr. Member
  • *****
  • Posts: 405
  • Karma: +0/-0
Advertisement
This Android Malware Is Attacking Smart Home Devices Within the 'Internet of Things'

A widespread malware campaign is currently affecting millions of smart home devices, including TVs, streaming boxes, and tablets running Android software. A recent FBI alert warns consumers about the BADBOX 2.0 botnet, which spreads through the Internet of Things (IoT) and gives threat actors access to home networks to conduct malicious activity.

Here's what you need to know to protect your system and devices from BADBOX 2.0.

How BADBOX 2.0 works

BADBOX 2.0 is a malware campaign that targets consumer devices, most of which are low-cost, "off-brand" smart home electronics—smart TVs, digital projectors, picture frames, and tablets, for example—running on Android Open Source Project (AOSP). Once infected, the devices are connected to the threat actors' command-and-control servers and become part of a botnet.

According to a report from HUMAN's Satori Threat Intelligence and Research team, attacks may then be carried out in a number of forms: programmatic ad and click fraud, which loads and clicks ads in the background to generate revenue; and residential proxy services, allowing for account takeover, fake account creation, one-time password theft, and malware distribution. For example, threat actors can route traffic through a victim's home IP address to hide malicious activity or use stolen data in credential stuffing attacks.

The current threat is an evolution of the original BADBOX malware, first identified in 2023, that came pre-loaded on devices prior to purchase. BADBOX 2.0 can spread through malicious Android apps found on Google Play and third-party app stores. The malware can also be downloaded from attack servers and installed upon initial startup.

The scheme has affected more than a million devices around the world, all of which were manufactured in China and running AOSP. At this time, none of the devices known to be infected are particularly mainstream (i.e., not Play Protect certified Android devices), but they are still popular in many countries, and there's nothing to preclude a spread to other models.

How to prevent a BADBOX 2.0 infection

If you have any of the devices known to be affected by BADBOX 2.0, you should certainly look for signs of malicious activity. According to the FBI notice, possible indicators include unexplained or suspicious internet traffic, the presence of suspicious app marketplaces, and Google Play Protect settings being disabled. You should also be wary of purchasing or connecting streaming devices sold as "unlocked," Android devices that aren't Play Protect certified, and IoT devices from brands you don't recognize.

Other security best practices include keeping all operating systems up to date with patches and security fixes for known vulnerabilities and downloading apps only from trusted, official marketplaces (don't fall for "free streaming" apps). You should also keep an eye on network traffic to catch anything suspicious and isolate any devices that may be compromised as quickly as possible.


Source: This Android Malware Is Attacking Smart Home Devices Within the 'Internet of Things'


 

 

Android 16's Latest Beta Adds a Long-Awaited Lock Screen Feature

Started by Nairaland

Replies: 0
Views: 304
Last post August 30, 2025, 03:31:45 AM
by Nairaland
Google Chrome Finally Added This Privacy Feature for Android Users

Started by Nairaland

Replies: 0
Views: 232
Last post May 16, 2026, 04:43:21 PM
by Nairaland
Meta Apps Have Been Covertly Tracking Android Users' Web Activity for Months

Started by Nairaland

Replies: 0
Views: 1536
Last post June 06, 2025, 09:05:09 AM
by Nairaland
Google’s June Android Drop Could End AI Scam Calls for Good

Started by Nairaland

Replies: 0
Views: 47
Last post June 10, 2026, 12:00:48 AM
by Nairaland
Google's Latest Patch Fixes 62 Security Vulnerabilities in Android

Started by Nairaland

Replies: 0
Views: 1433
Last post April 13, 2025, 01:31:15 AM
by Nairaland