Google wants to kill a massive Android TV botnet with lawyers
If you have already wandered in some of the less legitimate corners of the Internet and / or the real world, you may have seen these Android television boxes “broadcast everything for free” for sale. It turns out that this is a real problem, many of them hosting malicious software that transforms them into a botnet that hosts attorney and advertising fraud tools. Google takes an unusual tactic to stop them: the dispute.
BleepingCompute reports that the malware revived Badbox 2.0 is now working on more than 10 million devices based on Android, mainly these summary streaming video boxes. The botnet is mainly used to create false and usurped advertising tools which mainly fly money to Google and other advertising companies (probably referring it to operators in China) in addition to more varied activities such as DDOS attacks, agents and the proliferation of ransomware.
Google says that these proxy connections are sold to other criminals, up to 1,390 USD for 500 GB. False applications distributed to phones around the world, in third -party stores out of control of Apple and Google, are used to drive in advertising money.
Google says that these cheap Android TV streaming devices and gadgets are used to host and spread malware.
Although Google can not do much about hackers in China, Sicing lawyers on companies that house the tools that make the basic operations of this botnet possible. They presented a Rico (Racket Influency and Corrupt Organization Act, a frequent tool, a frequent tool used by American police to attack organized crime) which asks the American district court to close more than 100 areas that would have exploited malware and associated tools. In the event of success, Google and the court would force fairly large web service companies – including Godaddy, Cloudflare, Amazon and Alibaba – to close the services on these sites.
I must emphasize that, even if these infected devices perform Android, it is not your typical configurations of Android / Google TV, and they do not have Google Play Store or its associated guarantees in place. In fact, this botnet is not conceptually different from the big things that operated almost exclusively on infected Windows machines in the 2000s and 2010s. It’s just that these Android -based boxes are inexpensive, popular and easy to compromise thanks to the easily modifiable nature of Android.
This is an unusual decision, of course, but Google seems to have exhausted the options it has with its own tools, including monitoring and stopping advertising accounts. He seeks to force the registraires to cooperate with Google to identify and close the infected areas, with “permanent injunctions” to prevent hackers from simply repeating the process with new areas. Oh, it would also like a little money, in the form of an “appropriate fair repair under applicable laws and law” and usual statutory damages and lawyer fees.
