Police and cyber-security watchdog warn against using non-certified streaming devices

SINGAPORE – Singapore’s cyber-security watchdog and the police have warned against using non-certified streaming devices, as these may contain malware that can compromise users’ home networks and personal information.

In a release on Nov 12, the authorities said these devices, known as Android TV boxes, can be plugged directly into the TV to allow users to watch streamed content on their TV screens.

They said there are various types of Android TV boxes. Certified Android TV boxes support officially licensed applications such as Netflix and Disney+.

But non-certified devices often support illegal streaming sites or distribute malicious applications.

Users who visit illegal streaming sites or download unofficial applications through their non-certified TV boxes may be exposed to malware that can compromise their home networks and personal information.

The malware works by infecting the users’ devices with malicious applications, turning them into part of a botnet – a network of compromised computers used to carry out cyber attacks such as Distributed Denial-of-Service (DDoS) attacks and spam campaigns.

DDoS attackers make websites unavailable to legitimate users by flooding the sites with queries.

The malware also commonly steals users’ personal data and users’ Internet Protocol, or IP, addresses to commit crimes. These include phishing campaigns, spam e-mail distribution, ad fraud and online scams.

Users affected by such malware may notice slow device performance, unusual account behaviour, persistent pop-ups, suspicious programmes and system instability on their devices.

The authorities advised users to use official streaming services or purchase certified streaming devices from reputable brands.

They can also buy devices from reputable manufacturers who are more likely to produce secure products, while considering industry standards and best practices for the Internet of Things.

What to do if your device is infected by malware

If users suspect that their streaming devices are infected by malware, they should disconnect the device from the internet immediately.

They should run a security scan, uninstall any suspicious third-party apps and check their bank, SingPass and CPF accounts for any unauthorised transactions.

If malware is detected on their device or there are unauthorised transactions, users should report it to the bank and relevant authorities, and lodge a police report immediately.

They should not perform a factory reset before reporting the incident to the police, as this could hinder investigations.

Should users believe their accounts have been compromised, they should change their password immediately and enable a multi-factor authentication to secure their accounts.

They can also report the incident to relevant authorities, lodge a police report, or report it to SingCert.