Monday, October 7, 2024
HomeComputer SecurityHackers Compromised SmartTVs and Chromecast Devices To Promote PewDiePie YouTube Channel

Hackers Compromised SmartTVs and Chromecast Devices To Promote PewDiePie YouTube Channel

Published on

Hackers hijacked thousands of publically available Chromecast/SmartTV/GoogleHome devices to remotely play video on the users device and urge users to subscribe for the channel.

The hacking campaign dubbed CastHack run by two hackers with online name HackerGiraffe and j3ws3r. The attack infected more than 3,000 TVs and forced to show PewDiePie message.

The attack targets the misconfigured routers that have UPnP service enabled and forwarding network traffic over ports 8008/8443/8009, these ports are used by the smart devices to connect with the Internet.

- Advertisement - EHA

“If you came here because you’re a victim of #CastHack, then know that your Chromecast/SmartTV/GoogleHome is exposed to the public internet, and is leaking sensitive information related to your device and home,” HackerGiraffe/j3ws3r reads the page that stats page.

According to their initial Shodan scan, they found 123,141 exposed devices, the hackers set up a script that checks the IP is associated with, Google Home, SmartTV, or Chromecast devices then it renames the devices HACKED_SUBTOPEWDS and attempts to run a Youtube video.

HackerGiraffe said the best way to fix by disabling the UPnP on the router and to disable port forwarding with 8008/8443/8009.

https://youtu.be/SBtH_f8nwMQ

A Google Spokesperson said the users need to fix the issue by modifying the router settings and this is not an issue with Chromecast specifically.

The hacker duo is harmless “We just want to have a bit of fun while educating and protecting people from open devices like this case. Also, subscribe to PewDiePie on YouTube!”

They warned that if the vulnerability exploited by a malicious hacker they can remotely play media on your device, rename your device, factory reset or reboot the device, force it to forget all wifi networks, force it to pair to a new Bluetooth speaker/wifi point, and so on.

https://twitter.com/HackerGiraffe/status/1080390673541591040

The hackers already launched multiple campaigns last month, they hacked thousand of the printers worldwide to promote PewDiePie. In the second campaign 100,000 Printers Hacked Worldwide to promote PewDiePie YouTube Channel.

PewDiePie is the leader of the most subscribed youtube channel for more than a year now and an another Youtube channel from India called “T-Series” close to gain more number of subscribers than PewDiePie.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Hybrid Analysis Utilizes Criminal IP’s Robust Domain Data for Better Malware Detection

Criminal IP, a renowned Cyber Threat Intelligence (CTI) search engine developed by AI SPERA,...

RCE Vulnerability (CVE-2024-30052) Allow Attackers To Exploit Visual Studio via Dump Files

The researcher investigated the potential security risks associated with debugging dump files in Visual...

Cacti Network Monitoring Tool Vulnerability Let Attackers Execute Remote Code

A critical security vulnerability has been identified in the Cacti network monitoring tool that...

Microsoft & DOJ Dismantles Hundreds of Websites Used by Russian Hackers

Microsoft and the U.S. Department of Justice (DOJ) have disrupted the operations of Star...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

North Korean Hackers Attempted To Steal Sensitive Military Data

Diehl Defence anti-aircraft missiles from Baden-Württemberg are successfully intercepting Russian attacks on Kyiv, according...

TWELVE Threat Attacks Windows To Encrypt Then Deleting Victims’ Data

The threat actor, formed in 2023, specializes in ransomware attacks targeting Russian government organizations....

TeamTNT Hackers Attacking VPS Servers Running CentOS

TeamTNT is targeting CentOS VPS clouds with SSH brute force attacks. It has uploaded...