Recently we reported a woman’s testimonial of her experience with a IoT camera. To tell a shorter version of a story, we just have to mention that the IoT camera started to speak to its owners and move around. If this would not freak you out, then one of the epic moments of Mr. Robot really should have given you nightmares.
Remember the scene in which smart home system was hacked and the invader started to mess around with random Internet-connected objects like the TV, water temperature and so on? Did this seem unrealistic? Actually, while TV series tend to exaggerate and depict unrealistic scenes, but in this case, Mr. Robot did not wander off much.
LG’s IoT devices can be controlled by hackers if the vulnerability would be exploited
Researchers from Check Point have published an article about a massive vulnerability in LG’s smart home infrastructure. The flaw creates favorable conditions for the hacker to invade the entire home system and complete a total takeover which might even threaten residents’ lives. If SmartThinQ home appliances would be corrupted by hackers, they could secretly spy on people via objects, connected to the hacked account.
One of the most surprising discoveries was the fact that LG’S Hom-Bot camera-equipped robotic vacuum cleaner can also be hacked. This would allow hacker to monitor their targets and watch their every move around the house. Sounds creepy, doesn’t it? Even though IoT devices are high-tech and are capable of providing next-level convenience, their users are facing certain threats as well.
To get the picture, we recommend watching this video, provided by CheckPoint. It definitely looks creepy and shows the dangers of IoT devices. Hacking into LG’s IoT Home Appliances is relatively easy as even average-skilled invader could be able to do it. The attack occurs after 4 certain stages: Authentication, Signature, Token, and Login requests.
Of course, you should not think that utilizing of IoT devices will always end in hacks and spying. If you use strong passwords and other security methods, your device should not be obtainable by hackers. The issue with the LG’s IoT system is that users’ impact does not matter. Since the system is flawed, the vulnerability would allow hacking into those IoT house systems that even have been properly protected.
How can LG’s products be protected?
There are two ways of making sure that your smart house infrastructure would be properly protected. Update your LG SmartThinQ app to the latest version (V1.9.23). Also, you should update individual smart home devices by clicking on the smart home product under smartThinQ application Dashboard.
Source: blog.checkpoint.com.
