Overview

• The FBI reports more than 1 million home internet devices in 222 countries have been compromised and turned into proxy nodes.
• BADBOX2.0 infects low-cost Android Open Source Project gadgets through preinstallation, malicious firmware updates and side-loaded apps.
• A joint operation by HUMAN’s Satori team, Google, Trend Micro and partners severed control links for over 500,000 of the infected devices.
• Compromised units fuel ad fraud, credential stuffing and anonymized traffic for cybercriminals who rent or sell proxy access.
• The FBI urges consumers to monitor IoT traffic, avoid unofficial app marketplaces and keep all devices patched and updated.