Security News > 2024 > January > Bigpanzi botnet infects 170,000 Android TV boxes with malware
2024-01-17 18:54
A previously unknown cybercrime syndicate named 'Bigpanzi' has been making significant money by infecting Android TV and eCos set-top boxes worldwide since at least 2015.
Bigpanzi infects the devices via firmware updates or backdoored apps the users are tricked into installing themselves, as highlighted in a September 2023 report by Dr. Web.
Xlabs' report focuses on 'pandoraspear' and 'pcdn,' two malware tools used by Bigpanzi in their operations.
The analysts report that the Bigpanzi botnet has 170,000 daily bots at peak times and has observed over 1.3 million distinct IPs since August.
FBI: Androxgh0st malware botnet steals AWS, Microsoft credentials.
QNAP VioStor NVR vulnerability actively exploited by malware botnet.
News URL
Related news
- Vo1d malware botnet grows to 1.6 million Android TVs worldwide (source)
- MikroTik botnet uses misconfigured SPF DNS records to spread malware (source)
- DoNot Team Linked to New Tanzeem Android Malware Targeting Intelligence Collection (source)
- New Aquabotv3 botnet malware targets Mitel command injection flaw (source)
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- SpyLend Android malware downloaded 100,000 times from Google Play (source)
- Vo1d Botnet's Peak Surpasses 1.59M Infected Android TVs, Spanning 226 Countries (source)
- BadBox malware disrupted on 500K infected Android devices (source)
- The Badbox botnet is back, powered by up to a million backdoored Androids (source)