Security Now (Audio) SN 1057: GhostPoster - Free VPNs, Hidden Risks
69 snips
Dec 24, 2025 Discover the alarming world of cybersecurity as a massive smart TV botnet comes to light, revealing how innocent browser icons can harbor malware. Dive into North Korea's crypto exploits, including staggering theft amounts and sneaky methods of attack. Learn about insecure Docker APIs being exploited for cryptomining and the implications of compromised cloud services. Plus, hear about the clever PNG steganography used to infect thousands of users. This episode is a must-listen for anyone interested in staying ahead of digital threats!
AI Snips
Chapters
Books
Transcript
Episode notes
Malware Hidden Inside Extension Icons
- The Ghost Poster campaign hid a malware loader inside PNG icons using steganography to evade review.
- That loader extracted and executed payloads at runtime, bypassing static scanners and code reviewers.
Smart TVs Power A Hyperscale Botnet
- A massive Android TV botnet, Kim Wolf, infected over 1.8 million devices and can launch terabit-scale DDoS attacks.
- The botnet targets smart TV boxes due to weak firmware, preinstalled components, and poor update mechanisms.
Bitcoin Miner Doubles As Home Heater
- A listener submitted a photo of a Bitcoin mining rig repurposed as a home heater.
- The miner loops hot fluid through home radiators, both heating and generating crypto revenue.
