Android Botnet 'Popa' Linked to Israeli Firm NetNut, Exploiting Millions of TV Boxes
For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from multiple security firms concluded that the Popa botnet is linked to NetNut , a “residential proxy” provider operated by the publicly-traded Israeli firm Alarum Technologies Ltd [NASDAQ: ALAR]. Malicious streaming devices sold online th
A sophisticated Android botnet known as Popa, which has been active for four years, has been linked to NetNut, a residential proxy provider operated by the Israeli company Alarum Technologies Ltd. Popa infects millions of consumer TV boxes, forcing them to relay internet traffic for advertising fraud, account takeovers, and data scraping. Unlike traditional botnets, Popa's primary function is to establish a persistent communication layer for these compromised devices. Security firms Qurium and HUMAN Security identified the connection after investigating large-scale data scraping events. The compromised TV boxes, often sold with promises of free streaming services, turn users' internet connections into proxies without their full knowledge. This network of hijacked devices is used for illicit activities, raising significant security and privacy concerns.
The 'Popa' Android botnet, infecting millions of TV boxes, has been linked to Israeli firm NetNut, exploiting users' internet connections for fraudulent activities.
📌 Kaynak
Bu haber XML kaynağından derlenmiştir. Tamamı için orijinal habere gidin.
Orijinal haberi oku →