Better watch out where you download your subtitles from: It turns out attackers can infect subtitles with malicious code to exploit vulnerabilities in popular media players and take control of your device Researchers from security firm Check Point have discovered an unusual attack vector that relies on surreptitiously inserting malware in subtitle files to perform cyberattacks. The list of affected media players so far includes popular apps like VLC, Kodi, Popcorn Time and Stremio. According to their findings, the security experts estimate there are approximately 200 million streamers running iterations of the vulnerable software, making this “one of the most widespread” attacks…

This story continues at The Next Web