Skip to main content

TV Addons - Crypto Mining Hack

If you have been using Kodi third party addons for any length of time, you cannot have missed the controversy that always seems to surround TV Addons and the antics of its owner, Adam Lackman.  In recent history there have been a number of high profile  repo “hacks” and if you think back a little further, there was the DDOS hidden in the popular Exodus add-on.

TV Addons Hack & Virus History


Exodus DDOS “bot”


So if you dont recall TV Addons hugely popualr Exodus add-on had some code added to it to DDOS attack. This was in response to a clone or fork of the addon that TVA took exception against. This seems rather bizarre given the amount of forks that are flying around now! Here is a link to that article.

Exodus Botnet

We did remove a lot of the post – but heres some links showing the code and how it was added;

Exodus DDOS code

Target of DDOS

TVA & Indigo Repo Hijacks


So lets review the repo hijacks – hotly denied, but who else has a vested interest in force installing Indigo? All of the code basically forced the indigo tool as a dependency, so even if you didnt ewant it – TV Addons force install their software on your device. That in any other world is the definition of a virus. An unwanted software installation.

Exodus & Kodil Repo  Indigo Hijack


So TVA, Adam (or you may know him as Eleazar Coding), then resurrected Exodus after Lambda quit and TVA were shutdown (and then the whole “grassing other devs scandal blew up ). However here are two combined sotries from Spet 17 and Feb 18 – Adam pushed a modified Exodus update via the Kodil repo to infect even more devices with his software.

Kodil Repo Hijack – Exodus 4.xx.xx Forcing TVA addons Indigo Install !

Entertainment Repo – Indigo Hijack


Using the same methods as described above – by copying the repo format from an old zip file – then duplicating the setup on github, you can instantly infect and access any device that still has the old repo’s installed. This is a highly dubious practice and a malicious act aginst unwary users.   Read about this from March 18;

TV Addons; Yet ANOTHER Virus!

Cyrpto Mining Botnet


The latest con-trick that TV Addons have employed is forcing traffic through a crypto mining botnet through one its new tools, ” the pairing tool”  – you can see this is advertised on their site here;

tva addons crypto miner

Its linked to a github repo – so the code is public and easily accessed – and with all the things TV Addons have done in the passed, they are passing this code on to countless other wannabe scammers who will employ underhand tactics to make money of you.  How much simpler this would have been to simply declare that a few seconds of your time is taken to help fund development? Too easy? Better to just lie and deceive people if you keep getting away with it right?

The Crypto Mining Redirect


If you look in the zip file on github -> Download Here – you can open up the add.on.py yourself and see the following;



You can see that before you goto pair a video streaming site, you are redirected to a coinhive link – this is how your cpu/gpu is used to mine currency. This could affect your streaming – by slowing your device down whilst it uses CPU power to mine currency (very CPU/GPU intensive). This would be detrimental to phones or any mobile device, as it will consume a lot of battery power.

The amount of CPU usage or battery drain is dependent on how th shortcut to Coinhive Javascript miner is setup – it could be lots or just a little, as there has been no admission of this or public announcment, we have no idea.

What TV Addons Say…


this was put to TV Addons’s Adam Lackman via their twitter account earlier today, you can see their response here;



” the idea digusts us” – intersting response Adam, clearly you didnt check even when it was pointed out, perhaps your complicit and needed the cash?

Summary


Yet again TV Addons have been proven to be liars and a source of random infections, repo hijacks, ddos bots and now Crypto mining via its users devices without permission. We have said time and time again not to use TV Addons, Kodibae, Indigo and sundry other addons this guy has maliciously hijacked. Surely it would be simpler to be open and direct with users instead of the current wave of underhand and mailicious activities. You never know, people may have supported the short cut redirects – but i guess you feared they would reject it and now you are embroiled in another scandal.  SMFH.

Comments

Post a Comment

DVDrip – TorrentFreak

Loading...

Trending Posts...

The Rabbit Hole: Kodi Add-on

The Rabbit Hole is a Kodi add-on brought to us by Thundercat and I have to say that I am happy to see Thundercat found a home.  Some of you may remember this developer who was part of the Looking Glass Repo and brought us add-ons like Grub Hub and Blaze.  Guess what!?  Good news those two add-ons have been folded into the Rabbit Hole Add-on.  Once you click on the add-on and open it you will see another menu item called the Rabbit Hole.  After entering The Rabbit Hole you will be greeted with some familiar sections such as movies, tv shows, live tv, radio, and many other sections.  The add-on will become popular quickly to keep reading and install this great add-on. The Rabbit Hole: Current version of this addon is 2.1 This add on is “unofficial” and therefore not supported by Kodi Tv or XMBC foundations, please do not ask on their forums for help. You can unblock many “dns censored” sources with a smartdns solution  If you...
Post a Comment
Read more

How to Stream Zgemma to Kodi

If you have one of zgemma or Vu (enigma based) device you may not be aware that you can access and control your device from Kodi. This is pretty simple and quick to setup and will open up a whole bunch of options for you eg. watch your recordings on any device with Kodi (on the same network), set recordings on your receiver from any device running Kodi on your home network ( this can also be dome remotely and I will cover this in another blog), check on what recordings are set and even delete them if needed. There is a bit of jumping around in this tutorial as I have to cover a few different scenarios, I hope this doesn’t make it confusing, but feel free to leave comments. I will have a section created on Ares Forum for more support if its needed. Setup Process Set Fixed IP on zGemma Check OpenWebIf is installed and set correctly. Make a Custom Favourites List (optional) Add PVR to Kodi Configure PVR Receiver Setup The first step is to give the receiver device a fixed IP address, ...
Post a Comment
Read more

Fantastic Beasts: Kodi Add-on

Fantastic Beasts is a Kodi add-on that was once part of the Looking Glass Repo and lucky for the community it has found a home in the Team Illuminati Repo.  This add-on is focused on animals and documentaries about animals.  Documentaries are one of the most sought out sections in all the Kodi Community and this one does a nice job.  I think if you love animals and documentaries this add-on is made for you. Fantastic Beasts: Current version of this addon is 1.0.3 This add on is “unofficial” and therefore not supported by Kodi Tv or XMBC foundations, please do not ask on their forums for help. You can unblock many “dns censored” sources with a smartdns solution  If you use p2p add ons, torrents, or in countries that prohibit streaming use a vpn from a reputable provider like Private Internet Access . Dothraki Installation to Kodi Jarvis (16) Click SYSTEM > File Manager Double Click Add Source Click “ None ” text windo...
Post a Comment
Read more

Guide to Installing Kodi: Beginner's Edition

Kodi, A Guide for New Users This next article is going to be an all-in-one guide on how to set up Kodi from where to find it to how to install an add-on. This guide will serve to partner with the theme of creating helpful articles for the everyday, new Kodi user. We will focus on keeping the language understandable and hope this article helps teach you something new. By the end of this article we will have answered the what, where, and how to install Kodi, along with a repository, and an add-on. You may or may not be aware; however, the community is ever changing especially in the recent 12 months. More and more developers and groups have been shut down, received cease & desist letters, or have grown frustrated by treatment from other community members.  This has made it tougher to find the reliable all-in-one build as your go-to builder could hang it all up.  So our goal is for this guide to help you sit in the driver seat. The What As we said we are going to tackle a lit...
Post a Comment
Read more

Kodi Dlna Client and Server Setup for Krypton

What is Dlna ? WHAT IS DLNA? The term DLNA stands for “Digital Living Network Alliance”. It is the industry standard for sharing network data combined with “Universal Plug and Play Audio Visual(UPnP). This option can be used to share your media libraries from one device to another. If you have a PC or Kodi Box for your Tv, you can share its media contents.  Other Smart TVs, Game Consoles, Phones, etc. to name a few. It is recommended that you backup Kodi before continuing in case you wish to restore your Kodi settings at a later date. A Kodi UPnP server/media can stream its content to other devices on the same network by using UPnP and DLNA protocols. HOW TO ENABLE DLNA ON KODI? For this article, I used a clean version of Krypton 17.6. If you are using a Build, this is typically found by selecting System, then System again. Lets begin: After opening Kodi, select the Cog Icon found in the top left corner. Then Select Service Settings top row far right in...
Post a Comment
Read more