
Researchers at Pen Test Partners took up the challenge to hack a smart fridge at Defcon's IoT Village, and discovered that they could man-in-the-middle your Google login credentials from Samsung fridges.
The fridges use your Google login to display your calendar. They incorrectly implement SSL: when presented with an incorrect certificate, they fail to validate it. This lets someone on your network -- say, someone who's broken your wifi password -- to get your Google login. With more work, the researchers believe they could overwrite the fridge's firmware and the mobile app that lets you control it.
Whilst the fridge implements SSL, it FAILS to validate SSL certificates, thereby enabling man-in-the-middle attacks against most connections. This includes those made to Google's servers to download Gmail calendar information for the on-screen display.
So, MITM the victim’s fridge from next door, or on the road outside and you can potentially steal their Google credentials.
The notable exception to the rule above is when the terminal connects to the update server - we were able to isolate the URL https://www.samsungotn.net which is the same used by TVs, etc. We generated a set of certificates with the exact same contents as those on the real website (fake server cert + fake CA signing cert) in the hope that the validation was weak but it failed.
The terminal must have a copy of the CA and is making sure that the server's cert is signed against that one. We can't hack this without access to the file system where we could replace the CA it is validating against. Long story short we couldn't intercept communications between the fridge terminal and the update server.
Hacking DefCon 23’s IoT Village Samsung fridge
(via Techdirt)
Last week at Defcon, a security researcher named Smea presented their findings on vulnerabilities in the Lovesense Hush, an internet-of-things buttplug that has already been shown to have critical privacy vulnerabilities.
Few states have voting machines that are simultaneously more obviously defective and more ardently defended by the state government than Georgia, where 16-year-old touchscreen systems are prone to reporting ballots cast by 243% of the eligible voters and where gross irregularities in election administration sends voters to the wrong polling places or sends co-habitating husbands […]
Apple's Faceid -- a facial recognition tool that unlocks mobile devices -- has a countermeasure that is designed to prevent attackers from scanning an sleeping/unconscious (or dead) person's face to unlock their phone, by scanning the face for signs of consciousness.
Your home is your castle, but that doesn’t mean it has to be cold and stony. The summer is almost over, and that means the Labor Day sales are nigh. Here are 10 essential home accessories you never knew you needed, and you can take 15% off the final price (including any stated discounts). Just […]
Need to expand your IT know-how? It doesn’t happen overnight – but there are courses out there that can get you there quickly. Big businesses need the security, storage, and flexibility that cloud computing can provide, and they need competent IT professionals that know their way around those systems. Here are three online training packages […]
PC gamers, choose your weapons. We’ve sniffed out summer discounts on a truckload of gear from Azio, a company that gets high marks from users for style as well as performance. Here are a few of our favorites from their diverse line of keyboards and mice. Azio Vision KB505U Backlight Keyboard When you’re on a […]