Hacked BADBOX
Feb 2, 2024
In this podcast, the speakers discuss the infiltration of Triada malware in Android devices through the hardware supply chain. They explore an ad fraud scheme called Peach Pit and its use of compromised devices. The podcast also covers efforts to disrupt the malicious operation and speculates on new attack vectors in ad fraud. Additionally, the speakers trace the origin of the infected devices back to China and uncover a potential collaboration between manufacturers and operators.
AI Snips
Chapters
Transcript
Episode notes
Triada Malware Discovery
- In 2019, Google discovered pre-installed malware called Triada on Android phones.
- This malware was used for ad fraud, generating revenue for hackers by redirecting traffic.
Friend's Piracy Setup
- The host discusses a conversation with a friend about piracy and media servers.
- The friend uses an Android streaming device for accessing pirated content.
Bad Box Discovery
- Researchers at Human noticed unusual traffic patterns and traced them back to Android TV boxes.
- These boxes, like the T95, were found to be pre-infected with the Triada malware.