These free IPTV devices hide a danger: they are part of a criminal network.

Buying a low-cost set-top box to watch TV for free may seem like a good idea, as these types of devices can be found on platforms like Amazon , Temu, and AliExpress , and come pre-installed with apps for watching movies, TV shows, soccer matches, or pay-TV channels without spending a dime.

Despite how good they sound, many people don't know that some of these devices hide a real and dangerous threat . The security company Human Security has conducted an investigation after which they claim that many of these players, especially those from little-known brands, come infected with a virus called BadBox 2.0 .

What this virus does is turn your set-top box into part of a network of millions of devices controlled by cybercriminals . Without realizing it, your device could be being used to commit online fraud or carry out cyberattacks. In fact, according to the data, it has spread to more than 10 million devices.

How this virus acts

To begin the process, cybercriminals purchase thousands of cheap Android devices, install BadBox 2.0, and then sell them as normal products. If a user purchases and turns it on, the device will connect to a network controlled by the criminals . Once the virus is activated, the decoder can be used as an access point for other people to commit crimes.

For example, attackers can disguise their location by using the user's connection to launch attacks on services or websites without being easily detected, and they can also install fake versions of popular apps . Another way they can force the device to open pages with ads in the background or display fake ads is to make money illegally .

Google enters the scene

Together with researchers, Google is taking steps to curb the threat and has already blocked many of the malicious apps and shut down accounts linked to the fraud . They also recommend that users check whether their device is certified by Google Play Protect , a tool that detects and blocks dangerous programs.

What's more, the situation is serious enough that Google has initiated legal action against those responsible for BadBox 2.0, accusing them of fraud for profiting from false advertising. These measures are logically intended to shut down this network completely. Below, we share the list of devices used by the criminals.