Google has initiated legal action against unidentified hackers in China, alleging that they have hijacked over 10 million devices globally to create the BadBox 2.0 botnet. This sophisticated network has been linked to various dubious cyber activities, raising significant concerns within the tech community.
What you need to know
- Google is suing hackers in China for hijacking over 10 million devices and building the sneaky BadBox 2.0 botnet.
- BadBox 2.0 was found on cheap Android streamers, tablets, and projectors—either preloaded with malware or infected during setup via sketchy apps.
- Google’s Play Protect now auto-blocks anything linked to BadBox 2.0, shutting the door on this botnet’s favorite tricks.
Following investigations by Human Security and Trend Micro that unveiled the extent of the BadBox 2.0 botnet, Google has confirmed its decision to pursue legal recourse in a New York federal court. The lawsuit details how the botnet infiltrated uncertified devices, including budget-friendly streaming boxes, tablets, and projectors. These devices were either shipped with malware already installed or became infected during setup through dubious applications on open-source Android systems.
Is your device on the list?
If you own one of the flagged devices, it is advisable to disconnect it immediately. Google warns that the BadBox malware operates discreetly in the background, generating fraudulent ad clicks without alerting users. The FBI has also issued a public warning regarding the expansive nature of this threat, highlighting that compromised devices such as TV streamers, projectors, car infotainment systems, and even digital photo frames are being exploited to infiltrate home networks. Notably, many of these infected devices originate from China.
Hackers are gaining access to home networks primarily through two methods: preloading malware onto devices before they are sold or infiltrating them during setup via applications that contain hidden backdoors. Once these compromised Internet of Things (IoT) devices connect to the internet, they can be integrated into the BadBox 2.0 botnet or utilized as residential proxies, both of which are frequently associated with questionable online activities.
Ad fraud appears to be a significant concern for Google, as the company finds itself bearing the financial burden of fake ad traffic while simultaneously dedicating resources to tracking and dismantling the botnet. Furthermore, Google asserts that this situation undermines user trust, damages its reputation, and adversely affects its bottom line.
