SmartTube hit by network compromise
Incident
Summary
Hide ▲
Show ▼
The SmartTube Android TV client was compromised after an attacker obtained the developer's signing keys, allowing a malicious update to reach users. Play Protect then began blocking the app on some devices, signaling that the trusted update path had been abused. The incident matters because the compromised build could silently deliver untrusted code to a widely used streaming app.
Related Happenings
Android 17 expands platform security and privacy protections
Security Tool/Service
First: 12.05.2026 20:00
Last: 12.05.2026 20:00
Sources 1
About this happening:
**Android 17** will add a broad set of **Google**-backed security and privacy controls next month, reducing exposure to **banking scam calls**, **device theft**, and **OTP theft**...
Android 17 expands platform security and privacy protections
Security Tool/ServiceAbout this happening: **Android 17** will add a broad set of **Google**-backed security and privacy controls next month, reducing exposure to **banking scam calls**, **device theft**, and **OTP theft**...
IPTV app lure campaign distributing Massiv Android banking malware
Campaign
First: 19.03.2026 12:13
Last: 19.03.2026 12:13
Sources 1
About this happening:
A **recent IPTV app lure campaign** is distributing **Massiv Android banking malware**, putting users who seek **free or low-cost live sports broadcasts** at risk of device compro...
IPTV app lure campaign distributing Massiv Android banking malware
CampaignAbout this happening: A **recent IPTV app lure campaign** is distributing **Massiv Android banking malware**, putting users who seek **free or low-cost live sports broadcasts** at risk of device compro...
BeatBanker Android malware activity
Malware Activity
First: 10.03.2026 23:27
Last: 10.03.2026 23:27
Sources 1
About this happening:
The **BeatBanker** Android malware is actively **hijacking devices** by posing as a **Starlink app**, creating risk of credential theft, illicit mining, and remote device control....
BeatBanker Android malware activity
Malware ActivityAbout this happening: The **BeatBanker** Android malware is actively **hijacking devices** by posing as a **Starlink app**, creating risk of credential theft, illicit mining, and remote device control....
Google Play Protect and Play Integrity API expand Android anti-abuse controls in 2025
Security Tool/Service
First: 19.02.2026 19:00
Last: 19.02.2026 19:00
Sources 1
About this happening:
Google expanded **Play Protect** and **Play Integrity API** anti-abuse controls for Android apps in **2025**, strengthening protection across the app ecosystem. The update matters...
Google Play Protect and Play Integrity API expand Android anti-abuse controls in 2025
Security Tool/ServiceAbout this happening: Google expanded **Play Protect** and **Play Integrity API** anti-abuse controls for Android apps in **2025**, strengthening protection across the app ecosystem. The update matters...
Trust Wallet hit by network compromise
Incident
First: 02.01.2026 16:19
Last: 02.01.2026 16:19
Sources 1
About this happening:
**Trust Wallet** said its **Chrome extension** was likely compromised through the **second iteration of Shai-Hulud** in **November 2025**, exposing **GitHub secrets** and a **Chro...
Trust Wallet hit by network compromise
IncidentAbout this happening: **Trust Wallet** said its **Chrome extension** was likely compromised through the **second iteration of Shai-Hulud** in **November 2025**, exposing **GitHub secrets** and a **Chro...
Timeline
-
01.12.2025 02:00 2 articles · 5mo ago
SmartTube compromise and malicious update disclosed
Initial DisclosureUsers and the SmartTube developer disclosed that the Android TV client had been compromised after attacker access to the developer's signing keys enabled a malicious update to reach users; Play Protect blocked the app on some devices, reverse-engineering of version 30.51 found a hidden native library named libalphasdk.so, and the developer revoked the old signature while planning a new app ID and safer builds.
Show sources
- SmartTube YouTube app for Android TV breached to push malicious update — www.bleepingcomputer.com — 01.12.2025 20:56
- SmartTube YouTube app for Android TV breached to push malicious update — www.bleepingcomputer.com — 01.12.2025 20:56