ネタ | batteries & chargers 道場 | ライフ | まにあ道

Android malware, which secretly downloads unwanted software, has reportedly infected users in nearly 200 countries.

Antivirus company Dr.Web has flagged an Android malware called Android.Vo1d, which has infected approximately 1.3 million TV boxes in 197 countries.

The malware effectively enables a backdoor in the TV Box system that allows attackers to download and install malicious third-party software. Affected device types reportedly include R4 TV box models running Android 7.1.2, TV boxes running Android 12.1, and KJ-SMART4KVIP TV boxes running Android 10.1.

These TV boxes may have been targeted because they run older versions of open-source Android software that may have unpatched vulnerabilities, Dr.Web speculates. It's currently unclear why attackers are infecting TV boxes, and the source or creator of the malware is unknown.

The malware was found on Android-based TV boxes in Brazil, Pakistan, Russia, Morocco, Saudi Arabia, Argentina, Indonesia, Malaysia, and other countries. The malware was most prominent in South America, North Africa, and the Middle East, though Dr.Web did not share how many devices in Europe or North America may have been infected.

The presence of malware on your TV box may sound surprising or strange, but it is possible. One of the best ways to protect your data and TV box from external threats is to keep your TV box or TV stick's software and firmware up-to-date, as updates often contain patches for security vulnerabilities. You can also install an antivirus programme on your Android TV box, but depending on your circumstances and the value of your device, the hassle may or may not be worth it.

There are also a range of different TV boxes and streaming sticks available, from Roku to Apple, Amazon, or Google if you're looking for an upgrade. Amazon has shared that it will continue to provide security updates for most of its Fire sticks, Fire TVs, and other streaming devices until at least 2028, while Google recommends keeping your internet router's firmware updated as a part of best security practices to protect Chromecast devices.

In a statement, a Google spokesperson tells PCMag that the compromised TV boxes in question aren't certified by Google. "These off-brand devices discovered to be infected were not Play Protect certified Android devices. If a device isn't Play Protect certified, Google doesn’t have a record of security and compatibility test results," the rep explains.

‘Play Protect certified Android devices undergo extensive testing to ensure quality and user safety,’ a Google spokesperson added. ‘To help you confirm that your device features the Android TV operating system and Play Protect certification, our Android TV website provides an up-to-date list of partners. You can also take the following steps to check if your device is Play Protect certified.’