Security researchers have discovered Android malware that tries to infect smart TVs. The malware abuses an old leak that exists in versions prior to Android 5.0 Lollipop.
The malware is hidden in malicious apps that offer several TV channels and that are especially popular amongst users in Canada and the United States. The sites where the apps are downloaded are usually branded H.TV.
As soon as the malicious app is installed the leak, known since 2014, is abused to obtain root privileges. Most smart TVs, including those of Philips, Panasonic and Sharp run an on older and thus vulnerable Android version.
Once the malware has obtained root privileges it starts to download additional apps and malware. According to Trend Micro, the company that discovered the malware, it's important to keep Android systems up to date. Unfortunately this is harder on smart TVs, because the hardware is often limited.
