Researchers' Belkin Home Automation Hacks Show IoT Risks

Mathew J. Schwartz for BankInfoSecurity:  As if the internet of things didn't seem secure enough, now we have to worry about apps on our smartphones posing a risk too.

That's just one of the takeaways from the discovery of two zero-day vulnerabilities and one hardware-bypass flaw - now patched - in Belkin's WeMo line of home automation products. The flaws, and how to exploit them, were demonstrated Nov. 4 at Black Hat Europe by two researchers from endpoint security software firm Invincea, in a presentation titled: Breaking Bhad: Abusing Belkin Home Automation Devices.

Belkin bills its WeMo apps as being "designed to address simple automation needs without the hassle or expense of whole home automation." Compatible products include everything from "smart" LED light bulbs, power switches and baby video monitors to coffeemakers, slow cookers and heating controls. In November 2015, Belkin reported that 2.5 million devices using their technology were in the market.  Cont'd...

Comments (0)

This post does not have any comments. Be the first to leave a comment below.


Post A Comment

You must be logged in before you can post a comment. Login now.

Featured Product

This is Control4 Home Automation with Amazon Alexa.

This is Control4 Home Automation with Amazon Alexa.

INTRODUCING THE SIMPLEST WAY TO CONTROL YOUR ENTIRE HOUSE YOUR VOICE. Imagine this... We've all been there-walking through the door into a dark house, arms full. Wouldn't it be nice to tell your house to offer a helping hand? Now you can. A simple voice command-such as "Alexa, turn on Welcome"-lights up the hallway and kitchen, fires up your favorite Pandora station, while the door locks itself behind you. This is Control4 Home Automation with Amazon Alexa.