If an attacker takes control of a device inside your network -- by exploiting a defect in it or a mistake you made in configuring it or by tricking you somehow -- then they can do all kinds of bad things, like scanning your local network for other vulnerable devices, attacking them and taking control over them.
So, in a very real sense, security researchers can claim "A defect in $SOME_DEVICE allows attackers to take over $ANOTHER_DEVICE," and the latest version of this is that defects in your smart electric outlet are a stepping-stone to attacking your smart TV.
McAfee recently disclosed a defect in Belkin's Wemo Insight, an Internet of Things/smart electrical outlet.
McAfee's research points out that this could be use to attack your smart TV, though they admit this is just a colorful illustration (indeed, a defect in your smart TV could be used to attack your smart plug).
The bug underscores the primary risk posed by IoT devices and connected appliances. Because they are commonly built by bolting on network connectivity to existing appliances, many IoT devices have little in the way of built-in network security.
Even when security measures are added to the devices, the third-party hardware used to make the appliances "smart" can itself contain security flaws or bad configurations that leave the device vulnerable.
"IoT devices are frequently overlooked from a security perspective; this may be because many are used for seemingly innocuous purposes such as simple home automation," the McAfee researchers wrote.
Security MadLibs: Your IoT electrical outlet can now pwn your smart TV [Shaun Nichols/The Register]
(via Naked Capitalism)
A week ago, Apple announced a redesigned smartwatch that could track heart data, run EKGs, and even detect atrial fibrillation, promising that it would save lives. Today, one of America’s biggest insurers killed its traditional life insurance policies, replacing them with “interactive” insurance that encourages users to use such devices and share the data with […]
It’s in a Japanese “all-you-can-drink” restaurant, which sounds like a splendid idea. Note how it performs a correct angled pour, with headspit finish, to provide a superior pint.
HAL is described as the “world’s most advanced” Pediatric Patient Simulator. Hal simulates lifelike emotions through “dynamic facial expressions, movement and speech.” Gaumard Scientific’s video promises “amazed, transient pain, crying, and more.” [via @3liza] HAL not only looks like a boy, he behaves like one. He can track a finger with his eyes, answer questions, […]
Gone are the days when you needed to pore over a 400-page physics textbook to learn about weight ratios, aerodynamics, and all of those other STEM concepts that let us take to the skies. Thanks to Force Flyers’ DIY Building Block Drones, you can foster your STEM knowledge as you build and fly your own functional […]
As more companies leverage cloud technology to unite and streamline their operations, the need for capable IT pros increases. But, as any IT guru will tell you, demand alone won’t get your foot in the door to this lucrative field. If you want to cash in on the demand and build a thriving IT career, […]
iOS 12 is finally here, which means now is the best time for aspiring developers to throw their hats into the app development game. While app development can be tricky for some, you can take an intuitive, beginner-friendly approach to understanding app creation and Apple’s latest iOS platform with the iOS 12 & Xcode 10 Bootcamp, […]