Bluetooth exploit puts Amazon Echo and Google Home devices at risk
Remember BlueBorne, the vulnerability that allowed hackers to infiltrate an estimated 5 billion gadgets using only a Bluetooth connection? Today, Armis Security announced that an estimated 20 million Amazon Echo and Google Home devices were vulnerable to attacks via the BlueBorne exploit. The disclosure was coordinated with Google and Amazon, and both companies have already released patches to fix the issue on their respective devices. The report highlights a growing concern over the security of smart home devices, whose operating systems are often updated less frequently than desktop computers and cell phones, and can be left vulnerable to hackers. For the uninitiated, BlueBorne is the name used to describe eight vulnerabilities that allow hackers to seize control of a device using just a Bluetooth connection. Attacks can be executed remotely, and without any signal to the user. The scariest part is that once a hacker gains control of one Bluetooth-enabled device, it can be spread to any device on the same network. The exploit is terrifying for several reasons: For starters, hackers can essentially reprogram your devices to feed you incorrect information, from false traffic reports to an inaccurate schedules. More malicious hackers can also use BlueBorne to spy on you. The vulnerability allows exploiters to record and transmit recordings to anywhere in the world without the device owner's knowledge. This means individuals can have personal details compromised, and businesses can lose confidential information. What's perhaps most shocking is that exploited devices can be used in a massive denial-of-service (DDoS) attack. Last year's infamous assault of Dyn's servers, which brought down such websites as Twitter, Netflix, and Reddit for most of the day, was accomplished with the help of over 100,000 hijacked Internet of Things devices. "This is the tip of the iceberg," Armis Security cofounder and CTO, Nadir Izrael, told Mashable. "The fact that we're picking up on all these things leads us to believe that these smart devices are vulnerable in many, many other ways." Smart home devices tend to be especially vulnerable to breaches, Nadir added, because of the infrequency with which their software are updated. Compared to your phone or computer, most Google Homes and Amazon Echos run very old operating systems that aren't adapted to address new security concerns. When you operate an Internet of Things device, be it a Google Home or a smart refrigerator, it's important to treat it like you would a phone or computer. Keep it updated, turn off Bluetooth when you're not using it, and pay attention to which functions are enabled. And when purchasing smart home devices, make sure to consider security. "The first thing people should do when they're buying devices is say, 'How is this device secured?'" said Armis vice president of marketing Michael Parker. "Second, ask 'How does it connect? Bluetooth or Wi-Fi?' And finally, 'Can I turn this connectivity off?'" "We need to start having people asking these questions," he said, "and the market will start answering." If you're worried about being vulnerable to a BlueBorne hack and want check your own network's security, you can download the BlueBorne Vulnerability Scanner from the Google Play Store.
Featured Video For You
Amazon's new Echo Spot is here to replace your alarm clock
- 最近发表
-
- Nvidia GeForce Now Ultimate vs. New Graphics Card
- Gov't in hot seat over detained South Koreans in North Korea
- 3Doodler Create+ review: A 3D
- Pornhub says Patriots fans watched less porn than Rams fans during Super Bowl
- South Korean lawmakers brace for US election as Harris, Trump diverge on North Korea
- South Korean Kim wins Wyndham Championship
- The 5 places that stole my heart in 2016
- Nokia finally returns to the smartphone market
- U.S. Senators call on FTC to investigate the security of drivers' data
- 预计尿素新增产能469万吨!今年春耕氮肥保供形势乐观
- 随机阅读
-
- Which is Faster for Gaming, Windows 10 or Windows 11?
- How Siri Shortcuts work in iOS 12
- No one believes ICE arresting 21 Savage in Atlanta is a coincidence
- Jussie Smollett clarifies exactly what happened when he was attacked
- Ruling bloc seeks tougher sentences for deepfake sex crimes
- Here's how the Apple Watch's new 'walkie talkie' feature works
- Gov't in hot seat over detained South Koreans in North Korea
- North Korean man captured after crossing inter
- SpaceX Polaris Dawn mission: How to watch the launch
- Bremen, Schalke 'ready to deliver' on return
- [荥经]荥经县农民自娱自乐迎新春
- North Korean leader visits typhoon
- Echo Dot (5th gen) deal — get it for $29.99 at Amazon
- Study says zombies would wipe out humans in less than 100 days
- WikiLeaks threatens to build a database of verified Twitter users
- BBC morning show hosts introduce wrong guest live on air
- 'Metaphor: ReFantazio' hands
- Korea condemns deadly terrorist attack in Kazakhstan
- WikiLeaks threatens to build a database of verified Twitter users
- It's official, net neutrality is dead. Here's what that means
- 搜索
-
- 友情链接
-