Researchers revealed ten major vulnerabilities in Internet-of-Things babycams from a variety of vendors ranging from spunky startups like Ibaby Labs to rock-ribbed (and deep-pocketed -- attention, class actioneers!) giants like Philips.
Many of these cameras have no easy, networked means of getting a firmware update, either, making their zeroday bugs into foreverday bugs. Some of these bugs were simple programmer error, but Philips, ah, Philips: they shipped an Internet-connected home spycam whose default root login was admin and /ADMIN/. Security.
As you can see, there were several new findings across a range of vendors, all operating in the same space. Here at Rapid7, we believe this is not unique to the video baby monitor industry in particular, but is indicative of a larger, systemic problem with IoT in general. We've put together a collection of IoT resources, including a whitepaper and a FAQ, covering these issues, which should fill you in on where we're at on this IoT security journey. Join us next week for a live webinar where Mark Stanislav and Tod Beardsley will discuss these issues further, or just use the #IotSec hashtag on Twitter to catch our attention with a question or comment.
#IoTsec Disclosure: 10 New Vulnerabilities for Several Video Baby Monitors [Tod Beardsley/Rapid 7]
Logitech’s MX Keys [Amazon] is what it finally took to lure me away from mechanical keyboards. It’s a slim yet solidly-constructed full-size model that’s similar to and superior to Apple’s Magic Keyboard. It’s flat, minimalist, heavy, solid and low-profile, with large backlit keys typeset in something similar to Futura Light. The keys are square with […]
Microsoft is to shut shop on the high streets and malls of America, permanently closing its 116 retail stores. Only 10 were overseas; flagship stores in New York City, London, Sydney, and Redmond will be remain as showrooms that do not sell the products. There will be no layoffs, Microsoft reports. Alarm bells rang when […]
Traintrackr is a powered circuit board showing a map of the London Underground, lighting up in real time to show train positions on 333 stations on all 12 main lines. It connects to the tube’s API for live location data every second. The board is 400mm x 300mm and sells for £249. (There’s also the […]
Today’s teachers extol the virtues of hands-on learning, the method of helping students, particularly the youngest children, learn through basic doing. From trial-and-error methods to practice honing their emerging skills, youngsters can soak up a world of learning opportunities when their developing minds are unleashed. While the thought of dropping a smartphone or tablet into […]
“The guitar has a kind of grit and excitement possessed by nothing else.” – Brian May If someone was assigned to turn raw sexiness into an actual, physical real-world object, it would have to be a guitar. The sound. The fit. The swagger. The allure. The longing. It’s all right there in 38 inches and […]
There was already enough concern about the healthy state of our drinking water before COVID-19. And while there’s no evidence that the coronavirus has ever been detected in the water supply, the general sense of fear surrounding any type of contamination is obviously at a fever pitch everywhere. Contaminants like lead, chromium, arsenic, copper, mercury, […]