Am I supposed to be impressed?
Most of these pirate TV Boxes run the rankest Android 4 ROMs you’ve ever seen.

Like wow, you’ve found a exploit on 2011 user-debug Android, amazing.
There used to be 1-click root apps for these shits back then, am I really supposed to be amazed that you managed to reproduce that and brick some shittily made boxes? Running old chipsets chock full of vulnerabilities? Running an ancient and unpatched OS? Running the shoddiest programmed piracy front-ends ever? Really?

Imagine being the bootlickers who wrote that malicious code. Rest in piss, all of y’all.

the team’s solution is to render set-top devices useless through a software update controlled by them, rather than the manufacturer or whichever entity typically handles that.

ISPs in Brazil already hijack DNS requests for the purpose of blocking access to pirate sites. Typically, that involves an internet user attempting to access ‘Blocked Site A’ in their browser, and ISPs’ DNS servers directing the user to a blocking page instead. Assuming that a set-top box tries to access a particular domain name to receive an update, those requests can also be diverted to a different server.

Solution: never update the device.

Meanwhile, the victorious six-person team picked up a cash prize of R$7,000 for taking first place; that’s around US$1,200 or US$200 each after the split.

Wow. Just wow. I sure hope they get something more out of that, because 1200 dollars for fucking up who knows how many shitty chinese android boxes is worse than doing it for free. From a related article from TF:

Cybersecurity companies charge millions of dollars to solve problems smaller than this.

Imagine being so knowledgeable yet so immoral. Pieces of shit.

There’s white, gray and black hat… and then you have these guys, piss yellow hats.