Thursday, March 28, 2024

Android Cryptocurrency Mining Malware Infecting Amazon Fire TV & Other Amazon Devices

Android-based cryptocurrency mining malware now started infecting Amazon Fire TV & Fire TV Stick Devices.

It doesn’t specifically target the Amazon devices but Amazon Fire TV devices are running with an Android operating system so the cryptocurrency malware infection spreading across the Amazon devices.

Multiple Fire TV device owners are facing this infection while they are streaming media players and many compliant are registered in XDA forums.

This Mining Malware named as  ADB.Miner that was discovered earlier this year and it rapidly spreading through Android-based devices.

In this case, A particular version of this Mining malware started appearing on Amazon devices and installs itself as an app called “Test” with the package name “com.google.time.timer”. 

Once the malware penetrated to the device, it consumes the infected device resources and utilizes the cryptocurrency mining process, also it tries to spread itself to other Android devices on the same network.

Amazon Fire TV Infection Process

Malware infection process starts by installing the app on Amazon Fire TV and it is still unknown that which app is installing the malicious mining file to infecting the device.

Researchers believe that malware spreading while users trying to download the Apps that used to watch pirate movies or TV shows.

According to aftvnews Once an initial device is infected, the malware can spread itself to other devices over ADB, even if those other devices never had apps sideloaded.

Initial infection is slowly started in the infected device and it slows down the system process and  Loading apps will take longer than usual.

Later Malware utilizes the device and consuming 100% of the device resources to mining the cryptocurrency.

Also, A screen that says “Test” with a green Android robot icon will also occasionally appear randomly on infected devices.

It leads to stop the video playback and apps that makes very difficult to use it normally by infected user.

Prevention Methods

To make it impossible for your Fire TV device to become infected by this malware, go to your Fire TV device’s Settings and select the “Device” menu item.

Then select “Developer options” and ensure that “ADB debugging” and “Apps from Unknown Sources” are both set to “OFF”. These settings are off by default, so if you’ve never changed them, then you have always been safe from this malware.

Website

Latest articles

2 Chrome Zero-Days Exploited at Pwn2Own 2024: Patch Now

Google has announced a crucial update to its Chrome browser, addressing several vulnerabilities, including...

The Moon Malware Hacked 6,000 ASUS Routers in 72hours to Use for Proxy

Black Lotus Labs discovered a multi-year campaign by TheMoon malware targeting vulnerable routers and...

Hackers Actively Exploiting Ray AI Framework Flaw to Hack Thousands of Servers

A critical vulnerability in Ray, an open-source AI framework that is widely utilized across...

Chinese Hackers Attacking Southeast Asian Nations With Malware Packages

Cybersecurity researchers at Unit 42 have uncovered a sophisticated cyberespionage campaign orchestrated by two...

CISA Warns of Hackers Exploiting Microsoft SharePoint Server Vulnerability

Cybersecurity and Infrastructure Security Agency (CISA) has warned about a critical vulnerability in Microsoft...

Microsoft Expands Edge Bounty Program to Include WebView2!

Microsoft announced that Microsoft Edge WebView2 eligibility and specific out-of-scope information are now included...

Beware of Free Android VPN Apps that Turn Your Device into Proxies

Cybersecurity experts have uncovered a cluster of Android VPN applications that covertly transform user...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles