Researchers' Belkin Home Automation Hacks Show IoT Risks

Mathew J. Schwartz for BankInfoSecurity:  As if the internet of things didn't seem secure enough, now we have to worry about apps on our smartphones posing a risk too.

That's just one of the takeaways from the discovery of two zero-day vulnerabilities and one hardware-bypass flaw - now patched - in Belkin's WeMo line of home automation products. The flaws, and how to exploit them, were demonstrated Nov. 4 at Black Hat Europe by two researchers from endpoint security software firm Invincea, in a presentation titled: Breaking Bhad: Abusing Belkin Home Automation Devices.

Belkin bills its WeMo apps as being "designed to address simple automation needs without the hassle or expense of whole home automation." Compatible products include everything from "smart" LED light bulbs, power switches and baby video monitors to coffeemakers, slow cookers and heating controls. In November 2015, Belkin reported that 2.5 million devices using their technology were in the market.  Cont'd...

Comments (0)

This post does not have any comments. Be the first to leave a comment below.


Post A Comment

You must be logged in before you can post a comment. Login now.

Featured Product

MIDLITE® - Power Jumper IC™ HDTV & Sound Bar Power Relocation Kit with Interconnect

MIDLITE® - Power Jumper IC™ HDTV & Sound Bar Power Relocation Kit with Interconnect

The Power Jumper IC™ HDTV & Sound Bar Power Relocation Kit easily conceals power & A/V cables within the wall for a professional appearance. The kit is recessed and features a new low profile in-wall jumper that can be fed through 1" diameter holes. The metal strain relief bracket provides a solid connection for the interconnect. The kit comes prewired and does not require an electrician for installation. The Power Jumper IC™ is available in three options, HDTV, Sound Bar and HDTV & Sound Bar.