A group of researchers has made an alarming discovery: a new type of Android malware, known as Android.Vo1d, has infected more than 1.3 million TV Box devices in nearly 200 countries. Malware activates backdoor on affected devices, allowing hackers to install malware.
Affected regions include countries such as Argentina, Brazil, and much of Latin America in general, as well as the Middle East and Africa. Devices have also been affected in Europe and North America, and the malware is present in Europe, but researchers have not revealed details on the number of infected devices in the region.
Android.Vo1d malware affects over 1.3 million devices in 197 countries
According to the research behind this discovery, the Android.Vo1d malware infected devices with already outdated firmware versions. Some of the models mentioned are: R4 (Android 7.1.2)he TV Box (Android 12.1) and the JK-SMARTK4VIP (Android 10.1).
The researchers also detected dozens of variants of the Android.Vo1d malware, all of which had the same goal: to allow attackers to install and access software remotely. However, so far, the researchers’ analysis has not been able to determine how this massive infection occurred“The source of the TV Box infection is currently unknown,” says the post from security company Doctor Web.
Android TV Boxes are very popular devices because they allow you to turn a “dumb TV” into a smart TV, adding Smart TV features, such as access to streaming apps, games, and other apps for Android TV.
According to Google: “These unknown brand devices that have been infected with malware are not Play Protect certified Android devices.”
Being devices with an Android operating system or an Android-based system, there is a risk of being affected by malware designed to attack Android devices. However, Google has safeguards in place to protect devices, which means that devices that do not have this type of official support from Google are generally at greater risk.
This appears to be the case for the more than 1.3 million Android TV boxes affected by the Android.Vo1d malware. These devices are believed to be primarily Boxes of unknown or generic brands whose system is based on AOSPpossibly with modifications, so they are not part of Google’s protection program. The company said this in statements to PCMag:
“These unbranded devices that were allegedly infected with malware are not Play Protect certified Android devices. If a device does not have this certification, Google does not have a testing history or security and compatibility measures. Play Protect certified Android devices undergo extensive testing to ensure quality and security.
As a general rule, It is advisable to keep all our devicesincluding Smart TV Boxes, updated with the latest software version available, as operating system updates and security patches usually include protective measures against new threats.
Cover photo | Xataka smart home
By | Ars Technica
In Xataka Android | Is My Cell Phone Infected With a Virus? Signs That Something Is Wrong
