Hacked

BADBOX

Feb 2, 2024

In this podcast, the speakers discuss the infiltration of Triada malware in Android devices through the hardware supply chain. They explore an ad fraud scheme called Peach Pit and its use of compromised devices. The podcast also covers efforts to disrupt the malicious operation and speculates on new attack vectors in ad fraud. Additionally, the speakers trace the origin of the infected devices back to China and uncover a potential collaboration between manufacturers and operators.

40:36

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Triada malware was being pre-installed on Android devices along the supply chain by various vendors and manufacturers, leading Google to implement stricter security measures.

The Peach Pit ad fraud scheme involved infected Android devices, like the T95 set-top boxes, which were widely available from online retailers and contributed to a widespread compromise.

Deep dives

Google's battle against Triada malware

Google had been combating Triada, a malware that compromised Android devices for ad fraud purposes. Triada was being pre-installed on devices along the supply chain by various vendors and manufacturers. Google made efforts to root out Triada and implemented stricter security measures, leading to certified Android devices becoming safer. However, some Android TV boxes, like the T95, remained vulnerable to Triada. Human researchers discovered the Peach Pit ad fraud scheme, which involved infected Android devices and apps. Over 200 device models were estimated to be affected globally.

Introduction

2min

Peach Pit and Badbox: Infiltration and Ad Fraud

21min

Possible Compromised Devices and Ad Fraud Operation

8min

Disrupting Ad Fraud and Badbox

7min

The Future of Ad Fraud: Speculating on New Attack Vectors

2min

Tracing the Origin and Collaboration between Bad Box and Peach Pit Operations

2min

You can find all kinds of great deals on Android streaming TV boxes online. But sometimes something else comes in the box along with it. Our conversation with Lindsay Kaye - Vice President of Threat Intelligence at Human, and part of the security team that discovered that somewhere along the supply chain something else was getting installed into all kinds of Android devices.

Learn more about your ad choices. Visit podcastchoices.com/adchoices

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Hacked

BADBOX

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Google's battle against Triada malware

The compromise of T95 set-top boxes

The operation of Peach Pit ad fraud

Efforts to disrupt the operation

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Hacked

BADBOX

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Google's battle against Triada malware

The compromise of T95 set-top boxes

The operation of Peach Pit ad fraud

Efforts to disrupt the operation

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights