172: SuperBox

The episode investigates the security risks associated with "Superboxes," Android-based TV streaming devices marketed as providing access to thousands of channels and pirated content. Security researcher D3adass shares her years-long investigation into these devices, revealing that they often contain malware, communicate with servers in China, and can be used to create botnets. The boxes actively scan home networks, attempt to exploit vulnerabilities, and exfiltrate data. Sold through third-party marketplaces on major retailers' websites and promoted by influencers, these devices target suburban families, potentially serving as a large-scale attack vector against U.S. companies. Despite FBI warnings, these boxes remain available, highlighting a broader issue of consumer cybersecurity and the exploitation of economic anxieties.

Outlines

Part 1: Introduction, Malware Context

Part 2: The Superbox Discovery, Initial Investigation

Part 3: Botnets, Government Investigation

Part 4: Market Dynamics, Consumer Psychology

Part 5: Technical Threats, Network Risks

Part 6: Solutions, Future Outlook

Sign in to continue reading, translating and more.

Open full episode in Podwise

Darknet Diaries

Part 1: Introduction, Malware Context

Computer Recalls: A Look into the Dangers of Malware-Infected Devices

Meeting D3adass: From DEF CON Introduction to Cybersecurity Career

Part 2: The Superbox Discovery, Initial Investigation

The Superbox Discovery: A Cybersecurity Expert's Investigation Begins

Superbox's Illegality and Marketing Tactics: A Growing Threat

Uncovering Superbox's Technical Details: Old Android OS, TeamViewer, and More

Part 3: Botnets, Government Investigation

Government Interest and the BadBox Botnet Connection

Deep Dive into Superbox: Domains, Apps, and Firmware Analysis

Superbox's Deceptive Packaging and the Human Bug

Part 4: Market Dynamics, Consumer Psychology

Piracy, Target Demographics, and Cyber Psychology

Amazon, Walmart, and Best Buy's Role in Superbox Sales

Streaming Services' Frustrations and the Rise of Piracy

Part 5: Technical Threats, Network Risks

The Remote's Bluetooth Antenna and the Kimwolf Botnet

Superbox's Network Scanning and the Verge Article Controversy

Influencer Marketing and the Sophistication of Superbox's Campaign

Superbox's Reach and the ISP's Perspective

Part 6: Solutions, Future Outlook

Potential Solutions and the Lack of Action Against Piracy

The Future of Hostile Environments and a Call for Premium Subscribers

172: SuperBox

Darknet Diaries

Part 1: Introduction, Malware Context

00:00Computer Recalls: A Look into the Dangers of Malware-Infected Devices

Computer Recalls: A Look into the Dangers of Malware-Infected Devices

02:51Meeting D3adass: From DEF CON Introduction to Cybersecurity Career

Meeting D3adass: From DEF CON Introduction to Cybersecurity Career

Part 2: The Superbox Discovery, Initial Investigation

07:40The Superbox Discovery: A Cybersecurity Expert's Investigation Begins

The Superbox Discovery: A Cybersecurity Expert's Investigation Begins

15:11Superbox's Illegality and Marketing Tactics: A Growing Threat

Superbox's Illegality and Marketing Tactics: A Growing Threat

20:01Uncovering Superbox's Technical Details: Old Android OS, TeamViewer, and More

Uncovering Superbox's Technical Details: Old Android OS, TeamViewer, and More

Part 3: Botnets, Government Investigation

23:53Government Interest and the BadBox Botnet Connection

Government Interest and the BadBox Botnet Connection

28:03Deep Dive into Superbox: Domains, Apps, and Firmware Analysis

Deep Dive into Superbox: Domains, Apps, and Firmware Analysis

33:51Superbox's Deceptive Packaging and the Human Bug

Superbox's Deceptive Packaging and the Human Bug

Part 4: Market Dynamics, Consumer Psychology

37:53Piracy, Target Demographics, and Cyber Psychology

Piracy, Target Demographics, and Cyber Psychology

42:47Amazon, Walmart, and Best Buy's Role in Superbox Sales

Amazon, Walmart, and Best Buy's Role in Superbox Sales

46:35Streaming Services' Frustrations and the Rise of Piracy

Streaming Services' Frustrations and the Rise of Piracy

Part 5: Technical Threats, Network Risks

53:37The Remote's Bluetooth Antenna and the Kimwolf Botnet

The Remote's Bluetooth Antenna and the Kimwolf Botnet

1:02:13Superbox's Network Scanning and the Verge Article Controversy

Superbox's Network Scanning and the Verge Article Controversy

1:08:11Influencer Marketing and the Sophistication of Superbox's Campaign

Influencer Marketing and the Sophistication of Superbox's Campaign

1:17:22Superbox's Reach and the ISP's Perspective

Superbox's Reach and the ISP's Perspective

Part 6: Solutions, Future Outlook

1:22:23Potential Solutions and the Lack of Action Against Piracy

Potential Solutions and the Lack of Action Against Piracy

1:27:33The Future of Hostile Environments and a Call for Premium Subscribers

The Future of Hostile Environments and a Call for Premium Subscribers