- The FBI warns of the Badbox 2.0 malware has infected in more than one million devices
- Cheap devices, made in Chinese and often with Android the victim
- Kidnapped devices to be part of Global Botnet
More than one million devices have been infected with a dangerous malware strain that has made them malicious representatives, the FBI warned.
On a new alert, the agency urged users to be on guard against Badbox 2.0, a threat of malware that is directed at android devices, often made in China.
The FBI warns of devices as smart televisions, transmission boxes, projectors, tablets and other Internet devices (IoT) could be at risk or become residential representatives that are then used for malicious activities.
Badbox 2.0 malware warning
“The Badbox 2.0 Botnet consists of millions of infected devices and maintains numerous rear doors for proxy services that cyber actors explode by selling or providing free access to domestic networks committed to be used for various criminal activities,” says the FBI warning.
He noticed that affected devices often come with preloaded malware, but can also be transferred after installing malicious firmware updates and applications that have managed to reach Google Play and third -party application stores.
“Cybercriminals get unauthorized access to domestic networks when configuring the product with malicious software before buying users or infecting the device, since it discharges the required applications that contain rear plays, usually during the configuration process,” the FBI explained.
“Once these committed IoT devices are connected to domestic networks, infected devices are likely to become part of Botnet and residential Botnet and residential services 4 that are known to be used for malicious activities.”
He added that malware can also load and click ads without users being conscious, generating income for computer pirates and also accessing the victim’s accounts using stolen credentials.
The FBI has warned users to control their devices carefully and make sure that all their IoT devices come from a good reputation source. Users also receive instructions not to download applications of unauthorized application stores, and make sure their software and firmware are kept updated.
Original Badbox malware was detected in 2023 with a similar mode of operation, aimed at Android TV boxes without cheap brand.
The Botnet was successfully interrupted by the German authorities in December 2024, but this does not seem to have dissuaded the computer pirates, who have managed to grow the network worldwide, which leads to reclassification as Badbox 2.0.
Badbox 2.0 was initially marked at the beginning of 2025 by cybersecurity experts of the human’s satori intelligence team, which, together with multiple partners, eliminated dozens of malicious applications of Play Store, prohibited its developers and sank into communications for hundreds of thousands of infected devices.
