The uniquely horribly named Svakom Siime Eye is an Internet of Things sex-toy with a wireless camera that allows you to stream video of the insides of your orifices as they are penetrated by it; researchers at the UK's Pen Test Partners discovered that once you login to it via the wifi network (default password "88888888"), you can root it and control it from anywhere in the world.
Pen Test Partners repeatedly warned Svakom of the vulnerability over a period of three months. Having received no reply to date, they've gone public.
Beau du Jour found that the Siime Eye creates a Wi-Fi internet access point whose password, by default, is "88888888." That way, anyone in range can connect to it by guessing the simple password, as he explained in a blog post published on Monday. By looking at the code of the mobile app that comes with the dildo, the researcher also found that once on the dildo's Wi-Fi, you can access its webserver. This has a login portal, but the user is "admin" and the password is blank.
By reverse engineering the firmware, Beau du Jour found a way to get root—hacker speak for taking full control of it—and get persistence on the device, meaning that he could connect to it even outside the range of the Wi-Fi. At that point, it was game over for the smart camera dildo.
Vulnerable Wi-Fi dildo camera endoscope. Yes really
[Pen Test Partners]
Hackers Can Easily Hijack This Dildo Camera and Livestream the Inside of Your Vagina (Or Butt)
SOG’s $60 Sync II “wearable belt buckle” multitool isn’t the only multitool/buckle on the market, but it does add a couple very sensible innovations, like a clip-on/clip-off base that lets you use your tool without taking off your belt, and a squared-off form factor (like a pair of folding travel sewing scissors) that adapts the […]
This week on Cool Tools’ Maker Update: Kitty Grabs Gold, a beer cooler that follows you, the Circuit Playground Express, Adafruit and Microsoft, Other Machine Co. and Bre Pettis, Tinkercad Lego export, a great kit for gadget and toy hacking, and Maker Faires. Our featured Cool Tool is the iFixit Electronics Tool Kit. Check out […]
The mechanical Royal Kludge keyboard (Update: in stock here) seems to do well with Amazon reviewers, but there are no guarantees you’ll receive one with the coveted OFF/NO switch.
While some people still maintain that everything in Apple’s walled garden “just works” and is immune to the rampant malware of the Windows world, the reality is different. The Mac’s growing market share has made it a much more viable target for malicious actors, and its built-in tools aren’t always enough to fix things. Drive […]
Boasting an IPX6 waterproof rating, the Trakk Bullet Ultra Compact Waterproof Bluetooth Speaker resists dust and heavy rainfall. It’s currently available in the Boing Boing Store.The Trakk Bullet offers the same wireless convenience as other portable speakers, but few are built as tough as this one. Its utilitarian construction is designed to be a totally low-maintenance […]
The Ticwatch 2 Active Smartwatch is a simpler take on an active wearable that raised over $2m dollars on Kickstarter and is currently offered in the Boing Boing Store.Somewhere in between the single-day battery life and platform-specificity of the Apple Watch and Android Wear devices, there exists the Ticwatch. Instead of trying to shoehorn another […]