{"id":2922,"date":"2017-05-25T15:46:05","date_gmt":"2017-05-25T13:46:05","guid":{"rendered":"http:\/\/borncity.com\/win\/?p=2922"},"modified":"2017-05-25T15:46:05","modified_gmt":"2017-05-25T13:46:05","slug":"subtitles-put-video-player-at-risk-hacked-in-translation","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2017\/05\/25\/subtitles-put-video-player-at-risk-hacked-in-translation\/","title":{"rendered":"Subtitles put video player at risk&ndash;hacked in translation"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"http:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" align=\"left\" height=\"47\">Video players are vulnerable. Check Point researchers revealed a new attack vector which threatens millions of users worldwide \u2013 attack by subtitles viewed in media players.<\/p>\n<p><!--more--><\/p>\n<p>By crafting malicious subtitle files, which are then downloaded by a victim's media player, attackers can take complete control over any type of device via vulnerabilities found in many popular streaming platforms, including VLC, Kodi (XBMC), Popcorn-Time and strem.io. Security firm checkpoint estimate there are approximately 200 million video players and streamers that currently run the vulnerable software, making this one of the most widespread, easily accessed and zero-resistance vulnerability reported in recent years. Full details may be read at Check Point's blog post <a href=\"http:\/\/blog.checkpoint.com\/2017\/05\/23\/hacked-in-translation\/\" target=\"_blank\">Hacked in Translation \u2013 from Subtitles to Complete Takeover<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Video players are vulnerable. Check Point researchers revealed a new attack vector which threatens millions of users worldwide \u2013 attack by subtitles viewed in media players.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[448,580],"tags":[96,69,667,85,194],"class_list":["post-2922","post","type-post","status-publish","format-standard","hentry","category-devices","category-security","tag-player","tag-security","tag-video","tag-vlc","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/2922","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=2922"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/2922\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=2922"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=2922"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=2922"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}