The Gift of Cyber Attack: What to Know Before Gifting Smart Devices

With the holiday season in full swing, the temptation to buy clever and convenient gadgets as gifts for our friends and family is always there. Everybody loves a smart gadget that does interesting things. However, few people stop to consider the possible security implications and potential issues before they grab a shiny new toy off the virtual shelf.

The researchers at the Tripwire Vulnerability and Exposure Research Team chose a smart item suitable for a holiday gift and put it to the test. The item chosen for the security test was a best-selling Amazon item listed on the platform's gift guide - a Wi-Fi microscope.

The microscope has Wi-Fi connectivity features that require a computer or a mobile device to store any high-resolution digital images the microscope's camera captures. The means of connection to various devices differ significantly for this particular microscope, the research team found out. The mobile app stores for Android and iOS devices have a dedicated app on them.

PC users need to download a third-party program that allows access to the camera using either a USB connection or IP. The most convenient and generally safest option was available for Mac computers - Mac users can simply connect the device using USB and use a native MacOS application.

There are also issues with the mobile app connection option, the team explains. When you connect to your microscope with a phone, even when using the official app provided for that purpose, the microscope itself still acts as a Wi-Fi access point that has no password protection in place. This means your phone, once connected to the microscope, is exposed to potential attacks through the unsecured access point.

Potential bad actors who are within proper range could also spoof the microscope and replace the phone's connection with one to a new malicious access point.

As an extreme case, the researchers listed the possibility of bad actors developing a specific exploit aimed at that specific microscope device that will allow them arbitrary code execution on a connected mobile device, effectively giving them full access to everything on the phone.

By Zaib
December 3, 2020
Computer Security
English
December 3, 2020
Computer Security

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Computer Security

Security Loophole Discovered in Media Streaming Smart TV Devices

Nowadays an increasing number of people are moving away from conventional television and are switching to various streaming solutions that deliver an even wider variety of content without the need to let the cable guy... Read more

October 16, 2020
How To

How to Secure Your Nest Cameras and Other Smart Home Devices

Nest Labs, an American manufacturer of various smart home devices, recently had to encourage their customers to secure their accounts, as cybercriminals gained access to quite a few of them. The thought that some... Read more

March 4, 2019
Tips

Why Gifting Your Kid a Smart Device This Christmas Might Not Be Such a Good Idea

What is the first vision that springs to mind when you think about Christmas? It is probably your family, parties, tons of food, and, of course, gifts. Christmas gifts may be a pain in the neck, especially if you are... Read more

November 28, 2018
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.