You can now find Cyber Kendra on Google News | Telegram

Hackers Forced Thousands of Google ChromeCast Device to promote PewDiePie

Hackers force Thousands of smart TVs, Chromecasts to promote PewDiePie.
A couple of weeks ago, we have seen that Hacker Giraffe has forced thousands of exposed printers to print a message containing promotion of the popular youtube channel PewDiePie. He (PewDiePie) is a top-ranked channel on youtube with 79.5 million subscribers. 

Again Hacker shows the same type of attack, but this time on Google chromecast and Smart TVs. More than 5,500 exposed smart TVs, Chromecast streamers and Google Home devices have been commandeered to play PewDiePie promotions.
Hackers going with twitter handles @HackerGiraffe and @j3ws3r, remotely scanned the internet for compatible devices, including Chromecasts, exposed to the internet through poorly configured routers that have Universal Plug and Play (UPnP) enabled by default.

Hackers exploit the misconfigured routers and display a security warning message on vulnerable devices with the PewDewPie promotion. The message reads -
"YOUR Chromecast/Smart TV is exposed to the public internet and is exposing sensitive information about you! To find more about what to do and how to fix this, visit https://bit.ly/CastHack for more information,"
An interesting thing is that Google was aware of the security bug, as it was reported in 2014 when the streaming device was launched, but Google ignored the issue. With this bug, an attacker can remotely force affected devices into playing media of their choice, rename devices, force factory reset or reboot the device, force it to forget all WiFi networks, or force the affected device to pair with new networks.

Update:-
Just a hours ago an interesting tool have been released on GitHub with the name CrashCast-Exploit. This tool is something like same with this bug, as tool allows you to mass play any YouTube video with Chromecasts obtained from Shodan.io

[Note:- We are not responsible for any damage caused by this tool, and we don't take any risk caused.]

Post a Comment

Cookie Consent
We serve cookies on this site to analyze traffic, remember your preferences, and optimize your experience.
Oops!
It seems there is something wrong with your internet connection. Please connect to the internet and start browsing again.
AdBlock Detected!
We have detected that you are using adblocking plugin in your browser.
The revenue we earn by the advertisements is used to manage this website, we request you to whitelist our website in your adblocking plugin.
Site is Blocked
Sorry! This site is not available in your country.