Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

VirginMedia distributing viruses!

Go to solution
Lil-Squabbit
Up to speed

on ‎06-04-2021 12:26

As the title says.

VirginMedia are now distributing malicious malware/ viruses via their Telly Tablets. The viruses in question are:

  • COM.WAGD.SMARTER
  • COM.WAGD.XIAOAN
  • COM.WAGD.GEM

Apparently, this is due to an infection on one of their update servers which hard codes the malware into the system software. This means that even if you do a hard reset on the device, the malicious products will be reinstalled too.

What are VirginMedia doing about this as I am sure we cant be the only people that are having this issue.

This is worrying that a major broadband supplier is letting these malware/viruses run rampant through their products. Bad form VirginMedia, bad form!

What are you going to do about this? 

...........................................................................................................
Lil-Squabbit is soooooo NOT amused!!!!
193 REPLIES 193

Go to solution
Tigratone
Dialled in
In response to DM87

on ‎11-05-2021 18:35

I factory reset my tablet yesterday at 3:30. So far everything is good. But if I run a virus check (avast antivirus), it still shows the malware is still in the update folder. So it looks like it is still there, but not having any effect on the normal running of the tablet. Strange! It is worrying that it is still there though.

0 Kudos

Go to solution
Loobyyork18
On our wavelength
In response to DM87

on ‎11-05-2021 18:41

I factory reset mine yesterday about the same time and it's been running fine. AVG is still showing malware in system updates but the viruses haven't reappeared and there are no rogue pages opening in chrome

0 Kudos

Go to solution
Tigratone
Dialled in
In response to Loobyyork18

on ‎12-05-2021 19:39

Been over 2 days and no problems.

0 Kudos

Go to solution
hmfc4eva
On our wavelength
In response to Tigratone

on ‎12-05-2021 19:52

I re-installed System Updates on Friday Afternoon to test, 

5 days later still no Malware downloaded

0 Kudos

Go to solution
SalemsLady
Tuning in

‎12-05-2021 19:59 - edited ‎12-05-2021 20:02

I factory reset again this afternoon after reading the latest comments. I left WiFi off, made sure to disable automatic system updates before turning WiFi on. Have scanned with Malwarebytes and it has picked up the malware still in the system update, the factory version. 

(Had to edit my last reply as it hadn't picked it up, but 5 minutes later it did...  -_-)

I'm hoping it will at least stop the pop ups... but only time will tell. All this faff, just want to watch my Tablet in peace!

0 Kudos

Go to solution
Kev_B
Community Manager (Retired)
Community Manager (Retired)

on ‎18-05-2021 14:58

Hi,

Thanks to everybody who’s brought this issue to our attention. After investigating we can now confirm the implemented fix is working as expected, we recommend doing the following: 

  • Reset the tablet, ensure the Software Update app is enabled
  • Leave the tablet connected to the internet for 24 hours – if there’s no sign of malware after 24 hours you can continue using the tablet as you normally would
  • If you have anti-virus software installed, it may raise a concern with the Software Update app, this is a false positive and can be ignored

Please note the Telly Tablet is an end-of-life product, which means we won’t continue to provide support in future, and there will be no further software updates.

Kev

The do's and don'ts. Keep the community welcoming for all. Follow the house rules


Go to solution
Blazeno1
Joining in
In response to Kev_B

on ‎19-05-2021 07:42

1 day with  no pop ups so far, 

Signed out of Google 

Reset to factory settings 

Started up

Let it run after connecting to wifi

Disabled updates as we have been told there aren't any more coming 

****could this actually be it**** whooo hooo

 

0 Kudos

Go to solution
Sololobo
Superstar
In response to Kev_B

on ‎19-05-2021 11:29

I think it only reasonable to point out that the Telly Tablet, like many other older devices, does not simply just stop working because it's considered by some to be obsolete.

It's expected that after a certain period (2 years /3 years/ some other arbitrary period?) software updates will no longer be made available, and that many apps will not install/run correctly on older devices.

Well, that's "End of Life" for you.

However, when it was a compromised and official software update which was solely responsible for making the device unusable, manufacturers and providers of these devices can't just wash their hands of the problem they created and state "it's an end-of-life product, which means we won’t continue to provide support in future, and there will be no further software updates".

You broke it - you fix it, end of life or not.

At least with the promise of no further software updates (compromised or otherwise) this situation should not be repeated.

(And why were software updates being rolled out to end of life devices anyway?)




It's What I Do.
I Drink and I
Remember Things.

Only mark a post as helpful if your issue has been resolved.

Go to solution
user2000
On our wavelength
In response to Sololobo

‎20-05-2021 23:00 - edited ‎20-05-2021 23:08

I totally agree with the above.

If the product was already "end of life" with no more software updates, then the software update mechanism should HAVE BEEN DISABLED!  Either at source or pushed to the Telly Tablet...  that would have mitigated this very problem with this malware being pushed to the tablet via official channels.

What exactly IS the "implemented fix"?  It certainly doesn't sound like they have pushed a firmware WITHOUT this infected file.

The answer given by the Virgin mouthpiece does not satisfy me one bit - "false postive" indeed.  Let's see what Malwarebytes et al think about that.  As someone who works in I.T. I would be EXTREMELY wary of exposing my Google account etc on a device given the wishy washy response on the previous page.  It has already been said that this malware survives a factory reset, I think Virgin better make 100% sure that this is indeed a "false positive" and not some time bomb waiting to explode all over your personal data.

Well we'll see.

And then I will see if I decide to take further action against Virgin, be interesting to see how that argument stands up in the Small Claims Court.

0 Kudos

Go to solution
Lil-Squabbit
Up to speed
In response to user2000

on ‎21-05-2021 09:53

@user2000 wrote:

I totally agree with the above.

If the product was already "end of life" with no more software updates, then the software update mechanism should HAVE BEEN DISABLED!  Either at source or pushed to the Telly Tablet...  that would have mitigated this very problem with this malware being pushed to the tablet via official channels.

What exactly IS the "implemented fix"?  It certainly doesn't sound like they have pushed a firmware WITHOUT this infected file.

The answer given by the Virgin mouthpiece does not satisfy me one bit - "false postive" indeed.  Let's see what Malwarebytes et al think about that.  As someone who works in I.T. I would be EXTREMELY wary of exposing my Google account etc on a device given the wishy washy response on the previous page.  It has already been said that this malware survives a factory reset, I think Virgin better make 100% sure that this is indeed a "false positive" and not some time bomb waiting to explode all over your personal data.

Well we'll see.

And then I will see if I decide to take further action against Virgin, be interesting to see how that argument stands up in the Small Claims Court.

Agreed 

...........................................................................................................
Lil-Squabbit is soooooo NOT amused!!!!
0 Kudos
Top