If an attacker takes control of a device inside your network -- by exploiting a defect in it or a mistake you made in configuring it or by tricking you somehow -- then they can do all kinds of bad things, like scanning your local network for other vulnerable devices, attacking them and taking control over them.
So, in a very real sense, security researchers can claim "A defect in $SOME_DEVICE allows attackers to take over $ANOTHER_DEVICE," and the latest version of this is that defects in your smart electric outlet are a stepping-stone to attacking your smart TV.
McAfee recently disclosed a defect in Belkin's Wemo Insight, an Internet of Things/smart electrical outlet.
McAfee's research points out that this could be use to attack your smart TV, though they admit this is just a colorful illustration (indeed, a defect in your smart TV could be used to attack your smart plug).
The bug underscores the primary risk posed by IoT devices and connected appliances. Because they are commonly built by bolting on network connectivity to existing appliances, many IoT devices have little in the way of built-in network security.
Even when security measures are added to the devices, the third-party hardware used to make the appliances "smart" can itself contain security flaws or bad configurations that leave the device vulnerable.
"IoT devices are frequently overlooked from a security perspective; this may be because many are used for seemingly innocuous purposes such as simple home automation," the McAfee researchers wrote.
Security MadLibs: Your IoT electrical outlet can now pwn your smart TV [Shaun Nichols/The Register]
(via Naked Capitalism)
Samsung’s folding phone, which will ding buyers about two grand after tax, is already in deep trouble: the review units sent to journalists are dying after hours of use. CNBC’s Todd Haselton writes that it was “a tantalizing glimpse of the future — before it broke.” During my second day of testing, the screen began […]
Who wouldn’t want to buy a telescreen from Facebook, the least-trusted privacy merchant on Earth, so that they may be placed around the house? The obviously despised Facebook Portal will now be half-price, reports Matt Navarra. Details: No, you’re not misremembering the details from that young adult dystopian fiction you’re reading — Facebook really does […]
Time 4 Machine is a Ukrainian design shop led by Denis Okhrimenko; their latest project is "The most beautiful construction set in the world", a set of thin steel parts that you bend together to make (yes) beautiful mechanical models: a business-card case, a tractor, a working clockwork timer, a vintage sportscar, a springpowered cabriolet, […]
Believe it or not, PDF files have been the go-to format for contracts and forms of any type since 1993. And sure, they’re easily shareable – but that’s about it. When you need to edit or sign a document – and you will – that’s when frustration can set in. Luckily, there are workarounds, and […]
It’s 4/20! Smoke ’em if you got ’em – and if you haven’t got ’em, check out this roundup of deep discounts on pipes and other accessories. They’re all on sale, but you can take an extra discount off the final price courtesy of the Boing Boing store by using the online code 420SAVE. Freeze […]
Ever wonder if you’re cleaning your teeth well enough? If your last dentist visit has you getting a little more thorough about oral care, it might be time to save yourself some guesswork. A lot of electric toothbrushes promise deep cleaning, but there’s a Platinum Sonic Toothbrush that has power plus the simple but effective […]