IoT botnets move into the home theater market in search of low-hanging fruit
Set-top tuner boxes have become the infection vector in the spread of Internet of Things malware.
This came out of a report from mobile security house WootCloud, which said its team has caught a botnet called Ares, targeting Android entertainment boxes from Huawei, Cubetek, and Qezy Media.
The WootCloud malware detectives said the Ares infection preys on the poorly secured configurations many set-top boxes use with the ADB debugging interface in Android. In many of the boxes, TCP port 5555 has been opened for both ADB and remote management commands, making it an easy target to any attacker able to scan the open internet.
When a vulnerable device is detected, the malware then attempts to install itself via the remote commands over port 5555. From there, the bots connect to ..
Support the originator by clicking the read the rest link below.
