Do Not Trust These Smart Devices at Home, FBI, Google Caution
FBI warns malware is hijacking smart devices through BADBOX 2.0. Keep your home secure by removing suspicious gadgets and avoiding unofficial apps.
image for illustrative purpose
Federal and industry officials on Thursday issued an advisory on a botnet known as BADBOX 2.0 that targets internet‐connected devices running a generic version of Android. The FBI and Google say the botnet includes devices that arrive with malware preinstalled or acquire malicious code when added to a home network.
BADBOX 2.0 can infect streaming sticks, digital projectors, vehicle infotainment systems and digital picture frames. Infected hardware joins a network of compromised devices that cybercriminals use to relay proxy traffic for illicit operations. The FBI report notes that even devices without preloaded malware can become infected when users install applications from unverified sources.
Officials warn that any device running a non‐branded Android OS could be a vector. “Once linked to a home network, the device may download software that enables it to join the BADBOX 2.0 botnet and provide proxy access for criminal actors,” the FBI statement says. The advisory identifies multiple backdoors that let malware operators rent or sell access to infected home networks for tasks such as evading security controls or launching attacks.
To reduce risk, users should review all internet‐connected devices for signs of compromise. Any device requesting that Google Play Protect be disabled during setup or displaying unexplained traffic spikes warrants immediate attention. Owners should disconnect suspicious devices, apply firmware updates and avoid third‐party app stores.
The FBI and Google also recommend that network managers install patches for known vulnerabilities in routers and internet‐facing systems. Turning on firewall rules that limit outbound traffic can help detect high‐volume data flows that do not match typical usage. Monitoring endpoint logs and enabling network alerts for unusual activity can further reduce the chances of a silent infection.
FBI officials highlight that the botnet exploits a weakness in how generic Android devices receive updates and install applications. “Ensuring that all devices use official update channels will disrupt BADBOX 2.0’s ability to expand,” the advisory states. The bureau encourages homeowners to treat every unknown device as a possible threat until confirmed otherwise.
