Subtitles are Getting People Hacked

Security professionals from Check Point Security Labs have discovered a flaw in many media players that allow hackers to exploit the users. The problem lies in the subtitle files that the hackers use to bypass a computer's security system, which then allows them to gain complete access of the machine.

The security firm also concluded that hackers can alter the subtitles as per their requirements, meaning they can modify the subtitle file for every media player they want to use. Check Point has highlighted that companies such as Stremio, Popcorn Time, VLC Media Player and Kodi might be at serious risk.

For a normal person, subtitle files are the last thing anyone bothers about – the reality is the same for security professionals and anti-viruses because of the simple text files used in translation. Due to the lack of attention given to them, over twenty different formats, features, methods, and capabilities are currently in use.

The company that discovered this flaw also reported there are many websites and torrents currently being hacked to spread the evil subtitle files to users.

Furthermore, the flawed subtitle files that are being uploaded on torrent sites and other websites are being boosted up in rankings, encouraging users to download the files. And while some media players can download these files automatically, the ranking will only make it easy for the hackers.

After this flaw was discovered, the security firm contacted respective companies to report the subtitle flaw. Companies such as Stremio and VLC Media Player have already dispatched their updates. Updated versions of Kodi and Popcorn Time can be downloaded by clicking on their hyperlinks.

But concerns still remain about the other media players, as the hackers can find further flaws to be used to their advantage.

The problem lies in the fact that only a few people ever pay attention to the subtitle files, and because of this sole reason, they were able to take advantage of this system.