Void captures over a million Android TV boxes

Doctor Web uncovered Android.Vo1d, a backdoor targeting Android TV boxes that embeds components in system storage, persists via install-recovery.sh, daemonsu and debuggerd substitution, and can download and install executables/APKs; analysts attribute roughly 1.3 million infected devices across ~197 countries and provide IOCs and remediation guidance.