Thousands of Android devices come with unkillable backdoor preinstalled
Enlarge (credit: gremlin via Getty Images)
When you buy a TV streaming box, there are certain things you wouldn't expect it to do. It shouldn't secretly be laced with malware or start communicating with servers in China when it's powered up. It definitely should not be acting as a node in an organized crime scheme making millions of dollars through fraud. However, that's been the reality for thousands of unknowing people who own cheap Android TV devices.
In January, security researcher Daniel Milisic discovered that a cheap Android TV streaming box called the T95 was infected with malware right out of the box, with multiple other researchers confirming the findings. But it was just the tip of the iceberg. This week, cybersecurity firm Human Security is revealing new details about the scope of the infected devices and the hidden, interconnected web of fraud schemes linked to the streaming boxes.