Experts from Check Point Software found that in VTRs, there is a serious vulnerability that can allow hackers to gain control over mobile devices. We are talking about files with subtitles.
The problem concerns the four popular players, VLC, Kodi (XMB), Popcorn Time and Stremio. The total number of users of the players is around 200 000 000 people. Hackers can create malware, attach them to the subtitles, to spread in the network, and then take complete control over computers.
Check Point Software argue that subtitles are a very attractive target for villains, as their system supplies more than 25 different formats with different functions, this system has weak security, and many security vulnerabilities can be exploited. Moreover, infected subtitles can be created automatically and uploaded to the players even bypass the antiviruses.
By the way, Check Point Software has already sent out information to developers of players and they have already managed to plug the holes. The case for small — to download the update to your player.