FlagThis

The BADBOX botnet has infected over 190,000 Android devices, including high-end models like Yandex 4K QLED TVs. This botnet’s infection is believed to be facilitated by pre-installed malware during the manufacturing process or further down the supply chain, highlighting a significant supply chain vulnerability. The scale of the infection underscores the critical security risks associated with supply chain compromises.

The BADBOX malware campaign has compromised over 30,000 Android devices in Germany, including digital photo frames, media players and possibly smartphones. The malware is pre-installed on the devices, exploiting outdated Android versions. The German Federal Office for Information Security (BSI) has taken action to disrupt the communications between infected devices and command-and-control servers. This campaign highlights the risks associated with insecure supply chains and pre-installed malware on IoT devices, and emphasizes the need for rigorous security checks and device updates to prevent similar incidents.