« BackReverse engineering Android malware from popular Chinese projectorszanestjohn.comSubmitted by 3abiton a day ago
  • thenthenthen 16 hours ago

    Wow this is pretty insane, the whole supply chain of these things might look similar to the practises described in this article: https://www.chinatalk.media/p/how-to-buy-cheap-claude-tokens...

    HN discussion: https://news.ycombinator.com/item?id=48165492

    • redrove 21 hours ago

      I’m immediately suspicious of cheap chinese crap like this.

      $35 for a projector should cause you to raise at least one eyebrow.

      Also, as always with “IoT” type devices, they’re best kept in an isolated VLAN with no internet access.

      • DriftRegion a day ago

        This is the first time I've read an AI-heavy piece and stayed engaged with it all the way through. I think the author's sharing the prompts was key to that experience.

        • DANmode 20 hours ago

          As it should be!

        • shmeeed 16 hours ago

          Like many people, I've always been vaguely suspicious of IoT devices like these. But I've never seen reverse engineered what it is they actually do. The conclusion goes way beyond my expectations and is rather chilling:

          >My $35 projector wasn't just spying on me. It was selling my network. Anyone who paid Kookeey for proxy access could route their traffic through my IP

          • nticompass 15 hours ago

            Now that's just kooky! Sorry, I had to.

          • firesteelrain a day ago

            We need supply chain protections for the regular consumer now.

            • kotaKat 18 hours ago

              Best the FCC is going to do is a misguided blanket “China bad!” router ban because Elise Stefanik got a little lobbying birdie in her ear from a certain American drone manufacturer.

              • thenthenthen 16 hours ago

                Back at my old job we would get regular text messages and emails from the Chinese government when a piece of software or plugin in our public web-stack had a new cve or malware…

              • perarneng 20 hours ago

                100% governments needs to crack down on these manufacturers and basically say that if China does not stop this insanity then importing them in to the US or EU will become illegal since its a national and personal security risk.

                • graemep 18 hours ago

                  Not going to happen. Governments are very complacent. The UK only recently banned Chinese IP CCTV cameras from sensitive government sites!

                  Its impossible to do with anything that gets updates. You never know what the next update will bring. Obviously things that connect to the internet and do not get updates are hopelessly insecure. its also pointless for anything controlled by an app through a server (anything from cars to fridges these days) as you cannot control what the server does.

                  Governments will also find excuses not to do this as its expensive and inflationary. They will play down the risk, point out the Americans can do it too, etc.

              • wordsarelies 7 hours ago

                The us gov should pay for this sort of research to be published... bonus points for binaries.

                • l23k4 14 hours ago

                  This would typically not be referred to as a "remote access trojan". It's just an updater, or perhaps a dropper if you want to make it sound more scary.

                  • ashout33 10 hours ago

                    Is there any instructions on how I can do a similar analysis my own devices?