Connected kettles boil over, spill Wi-Fi passwords over London
Darren Pauli reports:
A security man has mapped and hacked insecure connected kettles across London, proving they can leak WiFi passwords.
The iKettle is designed to save users precious seconds spent waiting for water to boil by allowing the kitchen staple to be turned on using a smartphone app.
Pen Test Partners bod Ken Munro says hackers can make more than a cuppa, however: armed with some social engineering data, a directional antenna, and some networking gear they can “easily” cause the iKettle to spew WiFi passwords.
Read more on The Register.
IA Eng - October 19, 2015
About as bad as cheap Chinese devices that have built in email spamming on the household appliances. I’d like to see where this iKettle was manufactured and what type of security vetting process it went through. Probably none. Develop, produce and rake in the cash before something goes wrong. When something does go wrong, IF it can be patched without costing a ton of money, so be it. If it cannot, simple fold and create another company with their haphazard funds. =\