Cyber Threat Grows As Vo1d Botnet Infects Millions Of Android TVs

A new variant of the Vo1d botnet has infected over 1.6 million Android TVs across more than 200 countries, raising serious cybersecurity concerns, According to an investigation by XLab.

This botnet, which hijacks smart TVs and set-top boxes, has the potential to broadcast fake content, steal data, and launch large-scale cyberattacks.

The Vo1d botnet is a network of compromised devices controlled remotely by hackers. Cybersecurity researchers at XLab discovered that this latest version is more advanced than previous iterations, employing improved stealth techniques to evade detection.

The malware spreads through malicious apps or software downloads, allowing attackers to control infected devices without users’ knowledge.

Currently, the botnet is being used to generate fake ad traffic and run proxy networks for profit. However, its capabilities extend far beyond financial scams.

The botnet could be weaponized for devastating cyberattacks. Experts warn that with 1.6 million devices under its control, hackers could launch distributed denial-of-service (DDoS) attacks capable of overwhelming websites or even critical infrastructure.

Researchers warn that the botnet could spread disinformation, as shown by an incident in February 2025. In that case, AI-generated fake footage of Donald Trump was broadcast on televisions in the U.S. Department of Housing and Urban Development (HUD).

The footage depicted Trump bowing to kiss Elon Musk’s toes, with the caption “LONG LIVE THE REAL KING.” Staff at HUD were unable to stop the broadcast and had to unplug all the TVs.

The incident sparked public outrage and drew attention from the cybersecurity community, highlighting the growing risks of hacked smart devices like TVs and set-top boxes.

XLab argues that Smart TVs are especially vulnerable because they often lack robust security measures. Many users assume these devices are safe and fail to install protective software, while some manufacturers unknowingly ship devices with pre-installed malware.

These factors make Android-based TVs easy targets for large-scale botnets like Vo1d. Cybersecurity firms, including XLab, are actively working to track and dismantle the botnet, identifying key infrastructure used by the hackers. However, experts acknowledge that the botnet’s sophisticated encryption techniques make it difficult to neutralize.

To protect smart TVs and set-top boxes, users should regularly update software, avoid unofficial apps, and install security solutions tailored for smart devices. The growing prevalence of cyber threats targeting connected devices highlights the urgent need for stronger security measures in smart home technology.