Google warns 10M Android users against “BadBox” malware

Google warns Android users to beware of the “BadBox malware”

David Sackler July 23, 2025 Technology Leave a comment


Google has issued a warning to Android users regarding a malware infected device.

Photo Credit: Ed Hardie via Unsplash

Google warned more than 10 million Android users that they should shut down their devices due to a malicious infection known as BadBox 2.0. Google has warned over 10,000,000 Android users to shut down their devices after a malicious “infection” known as BadBox 2.0 was discovered.

BadBox is installed on a device. Hackers and cyber-attackers can then “infect” that device to gain access to sensitive information. The malware can also run advertising fraud on the device, and hold data for ransom via “ransomware” – asking the owner of the device to pay a fee to avoid having their data leaked.

The malware targets Android users. It has been discovered in 24 apps available on the Google Play Store. When downloaded, the malware also gives cyber criminals access. Experts say that although efforts were made to combat malware earlier this year in March, devices like televisions remain vulnerable.

Cyber criminals sell data online, without the consumer knowing.

Google Bites Back at BadBox

Google has filed suit to punish the attackers. Said the tech giant of the attacks in their official statement, “​​The BadBox 2.0 botnet compromised over 10 million uncertified devices running Android’s open-source software (Android Open Source Project), which lacks Google’s security protections.” Cyber criminals installed malware on these devices and used them to commit large-scale digital crimes, including ad scams.

Google’s suit targets three main methods of ad fraud: hidden rendering (where hackers create fake apps which appear real on compromised devices); web-based games, which launch invisble browsers which trigger Google ad view for profit for the hacker; ad clicks fraud (which generates revenue for hacker through searches for ads using monetisation service such as AdSense).

Reports indicate that Android TV boxes model numbers T95, QPLOVE Q9, QPLOVE Q8, and X88Pro10 are affected. Unknown model numbers of digital projectors and tablets are also affected, according to reports. Experts warn that consumers should avoid buying digital devices with suspiciously low prices and ensure their Android devices are Google Play Protect-certified to protect themselves from cyber attacks.

Free Subscribe

Sign up to stay ahead with the latest news straight to your email.

We respect your privacy and will never spam you!

About David Sackler

Avatar photo
David Sackler, a seasoned news editor with over 20 years of experience, currently based in Spain, is known for his editorial expertise, commitment to journalistic integrity, and advocating for press freedom.

Check Also

Is your Phone getting hacked on holiday? Here’s how to tell before it’s too late

Is your mobile phone being hacked when you’re on holiday? You can tell before it’s to late

You could be hacked if your phone displays strange behaviour while on vacation. Protect your …

Leave a Reply

Your email address will not be published. Required fields are marked *

© 2025 Costa News Spain. Your free news source for Spain.   Sitemap
Powered by GetYourGuide