Daniel Crowley, managing consultant at Trustwave SpiderLabs, says he was particularly struck by the tests he performed on Mi Casa Verde’s VeraLite home automation gateway, a smart hub that can manage up to 70 devices including lights, cameras, and door locks.
The system is designed for remote access, and the hub can be accessed via a Secure Shell connection to open up the root of programming within the device. But doing so requires no extra authentication or security. A hacker, he says, can use simple techniques to hack the local Wi-Fi network of a homeowner and gain access to his VeraLite.
“There’s a secondary interface to the web interface of the VeraLite called UPNP, and in its basic form it doesn’t have the ability to support authentication,” Crowley explains. “If I have access to the Local Network, I have full control of the VeraLite from the UPNP without a username or password.”
With that power, a hacker can do pretty much anything with the hub and the devices it’s attached to, including view security camera footage, unlock doors and harass homeowners. And they don’t even need to be near the house’s local network to do it, as there’s a secondary flaw that utilizes remote access. As it turns out, every VeraLite works within Mi Casa Verde’s cloud system, which is a series of broker and forwarding servers. Crowley and his team found that when they located the broker server, they could simply bypass the firewall and gain access to forwarding servers — which in turn gave them access to every VeraLite on the network.
Another word for “smart” (as in “smartphones”, “smart homes”, or “smart toilets”) is “hackable”.
According to the fine folks at Trustwave, Satis smart toilets all come with the same Bluetooth security PIN number. It’s the always imaginative 0000.
According to Betabeat, if you’ve got an Android phone loaded with the Satis app, you’re in business. You can now control any Satis toilet within range of your device.
Their writer Jessica Roy suggested that you use it to flap the lid open and shut and then spray water all over their, um, private parts. Wheeeee!
But Trustwave noted that someone who didn’t like the Satis owner could really cause them some financial pain in addition to spewing water and hot air all over their personal zones.
They warned: “An attacker could…cause the toilet to repeatedly flush, raising the water usage and therefore utility cost to its owner.”
Oh the humanity.
Why are we so eager to make everything “smart”, anyway?
Digital carjackers met with Forbes reporter Andy Greenberg to demonstrate how they can program a Ford Escape’s computer systems and crash it pretty much by pushing a button.
Also the stuff of good ghost stories (Christine? Is that you?)
Your car is highly vulnerable to Malware through a cellphone, Wi-Fi, infected MP3 and other means. Be very afraid! – Hackers can hijack the car’s computer systems to disable the brakes, change the cruise control, turn the engine on and off, and control most of the electrical systems such as the lights, climate control, odometer, locks and your radio.
As we talk about making entire fleets of cars “smart” (as in controllable from a single location) it’s kind of creepy to think about the possibilities. Especially if you combine that with the NSA stuff (so that people can track everywhere you drive, and issue tickets based on your own speedometer). Then we can start on “smart neighborhoods”.
Not that I’m paranoid or anything. (Much.) I like the idea of the good parts. (The promise of…having the toilet flush without me having to work so hard (??) … sounds good….) It’s just the bad parts I don’t like.