Skip to main content

TV Addons - Crypto Mining Hack

If you have been using Kodi third party addons for any length of time, you cannot have missed the controversy that always seems to surround TV Addons and the antics of its owner, Adam Lackman.  In recent history there have been a number of high profile  repo “hacks” and if you think back a little further, there was the DDOS hidden in the popular Exodus add-on.

TV Addons Hack & Virus History


Exodus DDOS “bot”


So if you dont recall TV Addons hugely popualr Exodus add-on had some code added to it to DDOS attack. This was in response to a clone or fork of the addon that TVA took exception against. This seems rather bizarre given the amount of forks that are flying around now! Here is a link to that article.

Exodus Botnet

We did remove a lot of the post – but heres some links showing the code and how it was added;

Exodus DDOS code

Target of DDOS

TVA & Indigo Repo Hijacks


So lets review the repo hijacks – hotly denied, but who else has a vested interest in force installing Indigo? All of the code basically forced the indigo tool as a dependency, so even if you didnt ewant it – TV Addons force install their software on your device. That in any other world is the definition of a virus. An unwanted software installation.

Exodus & Kodil Repo  Indigo Hijack


So TVA, Adam (or you may know him as Eleazar Coding), then resurrected Exodus after Lambda quit and TVA were shutdown (and then the whole “grassing other devs scandal blew up ). However here are two combined sotries from Spet 17 and Feb 18 – Adam pushed a modified Exodus update via the Kodil repo to infect even more devices with his software.

Kodil Repo Hijack – Exodus 4.xx.xx Forcing TVA addons Indigo Install !

Entertainment Repo – Indigo Hijack


Using the same methods as described above – by copying the repo format from an old zip file – then duplicating the setup on github, you can instantly infect and access any device that still has the old repo’s installed. This is a highly dubious practice and a malicious act aginst unwary users.   Read about this from March 18;

TV Addons; Yet ANOTHER Virus!

Cyrpto Mining Botnet


The latest con-trick that TV Addons have employed is forcing traffic through a crypto mining botnet through one its new tools, ” the pairing tool”  – you can see this is advertised on their site here;

tva addons crypto miner

Its linked to a github repo – so the code is public and easily accessed – and with all the things TV Addons have done in the passed, they are passing this code on to countless other wannabe scammers who will employ underhand tactics to make money of you.  How much simpler this would have been to simply declare that a few seconds of your time is taken to help fund development? Too easy? Better to just lie and deceive people if you keep getting away with it right?

The Crypto Mining Redirect


If you look in the zip file on github -> Download Here – you can open up the add.on.py yourself and see the following;



You can see that before you goto pair a video streaming site, you are redirected to a coinhive link – this is how your cpu/gpu is used to mine currency. This could affect your streaming – by slowing your device down whilst it uses CPU power to mine currency (very CPU/GPU intensive). This would be detrimental to phones or any mobile device, as it will consume a lot of battery power.

The amount of CPU usage or battery drain is dependent on how th shortcut to Coinhive Javascript miner is setup – it could be lots or just a little, as there has been no admission of this or public announcment, we have no idea.

What TV Addons Say…


this was put to TV Addons’s Adam Lackman via their twitter account earlier today, you can see their response here;



” the idea digusts us” – intersting response Adam, clearly you didnt check even when it was pointed out, perhaps your complicit and needed the cash?

Summary


Yet again TV Addons have been proven to be liars and a source of random infections, repo hijacks, ddos bots and now Crypto mining via its users devices without permission. We have said time and time again not to use TV Addons, Kodibae, Indigo and sundry other addons this guy has maliciously hijacked. Surely it would be simpler to be open and direct with users instead of the current wave of underhand and mailicious activities. You never know, people may have supported the short cut redirects – but i guess you feared they would reject it and now you are embroiled in another scandal.  SMFH.

Comments

Post a Comment

DVDrip – TorrentFreak

Loading...

Trending Posts...

Kodi Dlna Client and Server Setup for Krypton

What is Dlna ? WHAT IS DLNA? The term DLNA stands for “Digital Living Network Alliance”. It is the industry standard for sharing network data combined with “Universal Plug and Play Audio Visual(UPnP). This option can be used to share your media libraries from one device to another. If you have a PC or Kodi Box for your Tv, you can share its media contents.  Other Smart TVs, Game Consoles, Phones, etc. to name a few. It is recommended that you backup Kodi before continuing in case you wish to restore your Kodi settings at a later date. A Kodi UPnP server/media can stream its content to other devices on the same network by using UPnP and DLNA protocols. HOW TO ENABLE DLNA ON KODI? For this article, I used a clean version of Krypton 17.6. If you are using a Build, this is typically found by selecting System, then System again. Lets begin: After opening Kodi, select the Cog Icon found in the top left corner. Then Select Service Settings top row far right in...
Post a Comment
Read more

Kodi Audio Settings: Understanding the Options Available

Advanced Audio Settings The object of this Blog is to provide as much Information about the Audio Settings in Kodi/SPMC with out making it look like the Tech Specs. of an “Audiophiles” Sound System. I have to admit when I first looked in XBMC/Kodi, these options left me scratching my head. Thinking these are very complicated. Well they still do ! But once the different features and options were explained to me, it became quite easy. Understanding how to utilize these to enhance my use of Kodi/SPMC became a bit clearer. I certainly hope this article will do the same. Not just for those who have just started using Kodi, but for “veterans” as well who wish to know more about these settings. *Hint, if you make a mistake (and you will) when changing any settings, remember….Default is your friend. You can always start over. Need help? click here . The examples shown are Jarvis 16.1. I will also provide a brief description on how to find Audio Settings in Krypton...
Post a Comment
Read more

Chappa`ai, the New Fork of MetalliQ

Chappa`ai a Fork of MetalliQ The introduction of Chappa`ai has been discussed by one of our favorite Bloggers Gizmo. Due to his Bl og ( click here for the link) providing the information on where and how to install this Add-on, we’ll move on to show you how to use it correctly. If you have this installed already, you may skip this section and proceed to Configuring in a Build . Enabling Chappa`ai   Since you have installed Chappa`ai as per the Installation Blog by Gizmo, we’ll deal with how to install and enable the add-on itself.     Once you have installed the Blamo Repo, Open. Select Video Add-ons . After   opening, scroll down to Chappa`ai and click.   In the new Window, select Install .   Once the Install confirmation appears in the top right corner, select the Add-on again to continue.   Select Configure to continue.     Under the heading General and scroll down to TotalSetup if this is the first time setti...
Post a Comment
Read more

Utilizing Alluc.ee in Add-ons for Kodi

This article will show you how to take advantage of the benefits of using a Alluc.ee Account in the Kodi Add-ons Elysium, Placenta, Death Streams and Rebirth. These are just some of the many add-ons for Movies and TV Shows available and are quite easy to navigate. What is Alluc.ee? First off, let’s take a look at what Alluc.ee is about.  Here is a brief description of Alluc.ee  and how you can take advantage of what it has to offer: “Alluc.ee (pronounced: “all-you-see”) is a user-generated link-sharing-website that catalogs links to TV shows, movies, music videos, sport, anime and cartoons. Alluc does not host any content itself. Alluc.ee also does not contain any download links, all are links to streaming video sharing websites. Users provide the links in the right category and they are released to the site after having been checked by the administrators. Video hosting sites that are linked include YouTube, Dailymotion, and Veoh, among others....
Post a Comment
Read more

How to Adjust Video Screen in Kodi Jarvis/Krypton

Adjusting Video Screen in Kodi Have you ever opened your Kodi and found that the screen is “Skewed” or looks like it’s zoomed in and the edges are missing ? Well here’s a fix that everyone will be able to apply to Kodi 16.1, Krypton 17 and all Forks. Understanding where and how to adjust the video screen is one of the easiest fix that anyone can do. But before we begin, it’s always a good idea to check your Android device settings. You may have to adjust your settings there as well. Go to Main settings in your Device. (Android Box) Select display settings or Screen resolution. (varies depending on the Android version) Disable auto-detect HDMI. Now set it manually under HDMI output mode settings to 1080p, 50hz or you can set to what suits best according to the capacity of your TV manually by selecting it from the options on it. How to Adjust/Calibrate First of all, for the purpose of this article, all work was done on a PC for the screen captures. In addition, Kodi...
Post a Comment
Read more