Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer.

Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,572
Content source
https://sick.codes/extraordinary-vulnerabilities-discovered-in-tcl-android-tvs-now-worlds-3rd-largest-tv-manufacturer/
The following piece is the culmination of a three-month long investigation into Smart TVs running Android. Having lived through this research experience, I can wholeheartedly say that there were multiple moments that I, and another security researcher that I met along the way, couldn’t believe what was happening. On multiple occasions I found myself feeling as though, “you couldn’t even make this up…”

I’m a security researcher, a freelance developer, and a hacker.

Please follow me on Twitter @sickcodes here: https://twitter.com/sickcodes

The second researcher in this story is John Jackson: https://twitter.com/johnjhacking, an Application Security Engineer with Shutterstock, and a hacker.

We met about half way through this, and I have included his experience too.

Initial Research

Near the end of September, while conducting research into low-end Android boxes, I came across a number of serious flaws in the way in which these devices were being designed.

Without delving into the nuances of each device, all of the Smart TV products are Android based.

There are four types of TV products in the TV market:
  1. TV Sticks
  2. TV Boxes
  3. Smart TVs
  4. Android TVs
All of them are ARM based single board computers (SBCs). Most of the dies are 32bit, some are 64bit, but all of them are like a little Raspberry Pi competitor, focusing on GPU performance through the small, but powerful, Mali GPUs.

Some of the products that I investigated were “factory-flawed” and deliberately insecure.
Click to expand...
Read the full story here at Sick.Codes:
sick.codes

Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer. - Sick Codes - Security Research, Hardware & Software Hacking, Consulting, Linux, IoT, Cloud, Embedded, Arch, Tweaks & Tips!

The following piece is the culmination of a three-month long investigation into Smart TVs running Android. Having lived through this research experience, I can wholeheartedly say that there were multiple moments that I, and another security researcher that I met along the way, couldn’t believe...
sick.codes sick.codes
 
  • Like
  • Wow
  • +Reputation
Reactions: silversurfer, ForgottenSeer 89360, Protomartyr and 8 others
You must log in or register to reply here.

Similar threads

vtqhtr413
    • Like
    • Wow
UK public service broadcasters to launch broadband-based live TV service in 2024
Replies
1
Views
320
News Archive
Ink
Ink
Gandalf_The_Grey
    • Like
    • +Reputation
Introducing AdGuard for Android TV
Replies
11
Views
1,078
AdGuard
rashmi
R
MuzzMelbourne
    • Like
    • Wow
Lemon Group Uses Millions of Pre-Infected Android Phones to Enable Cybercrime Enterprise
Replies
1
Views
1,216
News Archive
Zero Knowledge
Z

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top