Sunday, November 10, 2024
HomeMalwareAndroid Cryptocurrency Mining Malware Infecting Amazon Fire TV & Other Amazon Devices

Android Cryptocurrency Mining Malware Infecting Amazon Fire TV & Other Amazon Devices

Published on

Malware protection

Android-based cryptocurrency mining malware now started infecting Amazon Fire TV & Fire TV Stick Devices.

It doesn’t specifically target the Amazon devices but Amazon Fire TV devices are running with an Android operating system so the cryptocurrency malware infection spreading across the Amazon devices.

Multiple Fire TV device owners are facing this infection while they are streaming media players and many compliant are registered in XDA forums.

- Advertisement - SIEM as a Service

This Mining Malware named as  ADB.Miner that was discovered earlier this year and it rapidly spreading through Android-based devices.

In this case, A particular version of this Mining malware started appearing on Amazon devices and installs itself as an app called “Test” with the package name “com.google.time.timer”. 

Once the malware penetrated to the device, it consumes the infected device resources and utilizes the cryptocurrency mining process, also it tries to spread itself to other Android devices on the same network.

Amazon Fire TV Infection Process

Malware infection process starts by installing the app on Amazon Fire TV and it is still unknown that which app is installing the malicious mining file to infecting the device.

Researchers believe that malware spreading while users trying to download the Apps that used to watch pirate movies or TV shows.

According to aftvnews Once an initial device is infected, the malware can spread itself to other devices over ADB, even if those other devices never had apps sideloaded.

Initial infection is slowly started in the infected device and it slows down the system process and  Loading apps will take longer than usual.

Later Malware utilizes the device and consuming 100% of the device resources to mining the cryptocurrency.

Also, A screen that says “Test” with a green Android robot icon will also occasionally appear randomly on infected devices.

It leads to stop the video playback and apps that makes very difficult to use it normally by infected user.

Prevention Methods

To make it impossible for your Fire TV device to become infected by this malware, go to your Fire TV device’s Settings and select the “Device” menu item.

Then select “Developer options” and ensure that “ADB debugging” and “Apps from Unknown Sources” are both set to “OFF”. These settings are off by default, so if you’ve never changed them, then you have always been safe from this malware.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

CISA Warns of Critical Palo Alto Networks Vulnerability Exploited in Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns organizations of a critical vulnerability...

Cisco Desk Phone Series Vulnerability Lets Remote Attacker Access Sensitive Information

A significant vulnerability (CVE-2024-20445) has been discovered in Cisco Desk Phone 9800 Series, IP...

Cisco Flaw Let Attackers Run Command as Root User

A critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects...

Researchers Detailed Credential Abuse Cycle

The United States Department of Justice has unsealed an indictment against Anonymous Sudan, a...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

HookBot Malware Use Overlay Attacks Impersonate As Popular Brands To Steal Data

The HookBot malware family employs overlay attacks to trick users into revealing sensitive information...

ToxicPanda Banking Malware Attacking Banking Users To Steal Logins

Recent research has uncovered a new strain of malware developed for Android devices, initially...

APT36 Hackers Attacking Windows Deevices With ElizaRAT

APT36, a sophisticated threat actor, has been actively targeting Indian entities with advanced malware...