Skip to main content

TV Addons - Crypto Mining Hack

If you have been using Kodi third party addons for any length of time, you cannot have missed the controversy that always seems to surround TV Addons and the antics of its owner, Adam Lackman.  In recent history there have been a number of high profile  repo “hacks” and if you think back a little further, there was the DDOS hidden in the popular Exodus add-on.

TV Addons Hack & Virus History


Exodus DDOS “bot”


So if you dont recall TV Addons hugely popualr Exodus add-on had some code added to it to DDOS attack. This was in response to a clone or fork of the addon that TVA took exception against. This seems rather bizarre given the amount of forks that are flying around now! Here is a link to that article.

Exodus Botnet

We did remove a lot of the post – but heres some links showing the code and how it was added;

Exodus DDOS code

Target of DDOS

TVA & Indigo Repo Hijacks


So lets review the repo hijacks – hotly denied, but who else has a vested interest in force installing Indigo? All of the code basically forced the indigo tool as a dependency, so even if you didnt ewant it – TV Addons force install their software on your device. That in any other world is the definition of a virus. An unwanted software installation.

Exodus & Kodil Repo  Indigo Hijack


So TVA, Adam (or you may know him as Eleazar Coding), then resurrected Exodus after Lambda quit and TVA were shutdown (and then the whole “grassing other devs scandal blew up ). However here are two combined sotries from Spet 17 and Feb 18 – Adam pushed a modified Exodus update via the Kodil repo to infect even more devices with his software.

Kodil Repo Hijack – Exodus 4.xx.xx Forcing TVA addons Indigo Install !

Entertainment Repo – Indigo Hijack


Using the same methods as described above – by copying the repo format from an old zip file – then duplicating the setup on github, you can instantly infect and access any device that still has the old repo’s installed. This is a highly dubious practice and a malicious act aginst unwary users.   Read about this from March 18;

TV Addons; Yet ANOTHER Virus!

Cyrpto Mining Botnet


The latest con-trick that TV Addons have employed is forcing traffic through a crypto mining botnet through one its new tools, ” the pairing tool”  – you can see this is advertised on their site here;

tva addons crypto miner

Its linked to a github repo – so the code is public and easily accessed – and with all the things TV Addons have done in the passed, they are passing this code on to countless other wannabe scammers who will employ underhand tactics to make money of you.  How much simpler this would have been to simply declare that a few seconds of your time is taken to help fund development? Too easy? Better to just lie and deceive people if you keep getting away with it right?

The Crypto Mining Redirect


If you look in the zip file on github -> Download Here – you can open up the add.on.py yourself and see the following;



You can see that before you goto pair a video streaming site, you are redirected to a coinhive link – this is how your cpu/gpu is used to mine currency. This could affect your streaming – by slowing your device down whilst it uses CPU power to mine currency (very CPU/GPU intensive). This would be detrimental to phones or any mobile device, as it will consume a lot of battery power.

The amount of CPU usage or battery drain is dependent on how th shortcut to Coinhive Javascript miner is setup – it could be lots or just a little, as there has been no admission of this or public announcment, we have no idea.

What TV Addons Say…


this was put to TV Addons’s Adam Lackman via their twitter account earlier today, you can see their response here;



” the idea digusts us” – intersting response Adam, clearly you didnt check even when it was pointed out, perhaps your complicit and needed the cash?

Summary


Yet again TV Addons have been proven to be liars and a source of random infections, repo hijacks, ddos bots and now Crypto mining via its users devices without permission. We have said time and time again not to use TV Addons, Kodibae, Indigo and sundry other addons this guy has maliciously hijacked. Surely it would be simpler to be open and direct with users instead of the current wave of underhand and mailicious activities. You never know, people may have supported the short cut redirects – but i guess you feared they would reject it and now you are embroiled in another scandal.  SMFH.

Comments

Post a Comment

DVDrip – TorrentFreak

Loading...

Trending Posts...

How to Enable MetalliQ Add-on in Kodi

What is MetalliQ ? MetalliQ , by  OpenELEQ , an amazing and useful  Add-on  which provides available streams from all your installed add-ons in your system.  Providing you with  Movies, TV Shows,  and  Music  in the best possible quality. MetalliQ also integrates perfectly with your  Trakt  account, another tool that everyone must have in their Kodi. If you try to run Metalliq on a fresh Kodi installation, it won’t do anything. Metalliq depends on and works very well with many Video Add-ons for content. How to Install MetalliQ You can find the MetalliQ Add-on in the NaN (noobsandnerds) Repo. Open the NaN repo from “Install from Repositories”. Select Video Add-ons. OpenELEQ Tools and Install. After the install notification appears, return to Install from Repositories. Select Q’s Repository. Video add-ons. Select MetalliQ, a list of Kodi versions will appear, select the same version you have instal...
Post a Comment
Read more

WiFi Settings & Tweaks for Kodi

I thought I’d cover the one of the most talked about issues in the world of streaming and thats WiFi and how to get the best out of it, practical measures and not some of the voodoo you read on some forums! What is WIFi? The term Wi-Fi refers specifically to the IEEE 802.11 set of standards for wireless networks. Several different standards are designated by a letter suffix on the 802.11, such as in 802.11g or 802.11n. In general all of the 802.11 standards operate on either a 2.4GHz or 5GHz radio frequency. 5GHz has much greater speed capability but a reduced range; generally speaking the lower a frequency the further it will travel, so don’t expect miracles if you switch to 5GHz. A key thing to note here is that if ANY device uses the older “b” standard then ALL devices *could* have their speed reduced to 11mbps on “g” networks, depending on your router. This really applies to older equipment or cheap equipment with old parts used in it *cough* t...
Post a Comment
Read more

How to Adjust Video Screen in Kodi Jarvis/Krypton

Adjusting Video Screen in Kodi Have you ever opened your Kodi and found that the screen is "Skewed" or looks like it's zoomed in and the edges are missing ? Well here's a fix that everyone will be able to apply to Kodi 16.1, Krypton 17 and all Forks. Understanding where and how to adjust the video screen is one of the easiest fix that anyone can do. But before we begin, it's always a good idea to check your Android device settings. You may have to adjust your settings there as well. Go to Main settings in your Device. (Android Box) Select display settings or Screen resolution. (varies depending on the Android version) Disable auto-detect HDMI. Now set it manually under HDMI output mode settings to 1080p, 50hz or you can set to what suits best according to the capacity of your TV manually by selecting it from the options on it. How to Adjust/Calibrate First of all, for the purpose of this article, all work was done on a PC for the screen captures. In addit...
Post a Comment
Read more

Gaia: Add-on for Kodi-Part One

Gaia Streaming Add-on Gaia is a Kodi addon for streaming movies, shows, documentaries, and short films from a variety of sources, such as torrents, usenet, hosters, and video streaming services. This Add-on is optimized for premium services such as Premiumize, OffCloud, RealDebrid, and EasyNews. Due to the length of configuring this add-on, this article will be in two(2) parts. We will show you how to install Gaia Add-on in part 1. Part 2 will offer you two configuration options, Manual or using the built-in Wizard. So lets begin.   What do I need to Install Gaia ?   Besides the Repo, it is highly recommended to have a VPN installed if you plan on using this add-on due to its streaming of Torrent Files. A Real Debrid and Premiumize.me  Accounts will greatly improve the results. Premiumize.me along with Real Debrid are a Paid Service.  ResolveURL and URL Resolver should be up to date and enabled prior to installing Gaia as I found out ...
Post a Comment
Read more

Removing Old/ Non-Working Add-ons & Repositories

Removing Old Add-ons/Repositories Removing Add-ons and Repositories that no longer function is a natural progression of our theme directed towards new users to Kodi. As we all know, sometimes an Add-on or a Repository will cease to function for no fault of our own. But what is the best way to remove these? We will provide you the easiest method to remove an individual Add-on as well as the associated Repository. In addition we’ll also show you how to remove any URL Sources in File Manager. Why Removing Add-ons/Repos is Important While it appears the advice concerning repositories is factual and from reliable sources, you may have by mistake installed a Repo/ Add-on that may be malicious or may be using addons that are not from reliable sources. A perfect example is this excellent article concerning Kodil-Exodus-Indigo Blog. As a result, these should be removed as soon as possible. Lets start with a single Add-on. Removing Add-ons First step after opening Kodi is to Click Add-0ns...
Post a Comment
Read more