Android TV Box T95 sold on Amazon contains Malware

If you are looking for an Android TV Box, you might want to stay away from the T95, which comes with the famous Android TV. That box that is even being sold by Amazon is full of malware, and it’s not even because it has been tampered with by whoever sells it, since they are leaving the factory that way.

The discovery was made by Daniel Milisic, who discovered it thanks to the Pi-Hole software. This allowed him to understand how TV Box was trying to connect to IP addresses known to be associated with malware. The T95 TV Boxes are not only available on Amazon, but also on other stores like Aliexpress, and many more.

It’s unclear whether just individual devices, or entire batches, or all T95 models are affected by the malware issue. At least on GitHub, Milisic provides a script that can be used to prevent malicious communication. There he also explains how you, as the owner, can tell if your device is infected. Apparently, the malware is deeply integrated into the system out of the box, and this means that it could track some components because they are deeply embedded in the ROM.

The security researcher suspects that the “Copycat” malware is provided free of charge. It was first discovered in 2017 and was part of major adware campaigns that infected over 14 million Android devices. In the end, of course, the question is whether you want to take that risk when buying a streaming box, and simply opt for something similar.

 

Newer Articles

• 20 Success Tips for New Entrepreneurs in 2023 ·
• How to keep your PC safe from Cyberattacks
• Top 10 Health Tips for Winter

Older Articles

• Top Six Benefits of Wi-Fi 6 Routers for Home and Office
• Microsoft prepares to add new features to Windows 11
• Hama launches smart USB device charging solution