Samsung
Samsung RFSH8HMELBSR Smart Fridge
A breach discovered in the Samsung Smart Fridge has raised privacy concerns for internet security simply because it has fallen victim to a cyber attack which has exposed Google's gmail log in. At a very recent DEFCON Hacking Conference, a security firm known as Pen Test Partners exposed a particular flaw in the Smart Fridge that actually fails to validate SSL certificates. These failures inadvertently and unwittingly make "man-in-the-middle-attacks" possible.
Ken Munro, Security Researcher at Pen Test Partners explained to THE UK REGISTER precisely how it occurs:
"It appears to work the same way that any device running a Gmail calendar does. A logged-in user/owner of the calendar makes the updates and those changes are then seen or any device that a user can view the calendar on....while the SSL is in the place, the fridge fails to the validate the certificate. Hence, hackers who manage to access the network that the fridge is on (perhaps through a de-authentification and fake WiFi access point attack) can man-in-the-middle the fridge calendar client and steal Google login to credentials from their neighbors..."
Pedro Venda of Pen Test Partners described how they took on the challenge by expounding further on their BLOG
Samsung is currently investigating the matter. A representative stated: "protecting our consumer's privacy is our top priority and we work everyday to safeguard our valued Samsung users."
(c) JuicyChitChats 2015 [Tuesday 25th August]
TAGS: JuicyChitChats-News. Samsung RFSH8HMELBSR Smart Fridge. Ken Munro. Pedro Venda. Pen Test Partners. LiveTalkLearnProsper
HASHTAGS: #JuicyChitChats-News #SamsungRFSH8HMELBSRSmartFridge #KenMunro #PedroVenda #JuicyChitChats-LiveTalkLearnProsper #LiveTalkLearnProsper
"It appears to work the same way that any device running a Gmail calendar does. A logged-in user/owner of the calendar makes the updates and those changes are then seen or any device that a user can view the calendar on....while the SSL is in the place, the fridge fails to the validate the certificate. Hence, hackers who manage to access the network that the fridge is on (perhaps through a de-authentification and fake WiFi access point attack) can man-in-the-middle the fridge calendar client and steal Google login to credentials from their neighbors..."
Pedro Venda of Pen Test Partners described how they took on the challenge by expounding further on their BLOG
Samsung is currently investigating the matter. A representative stated: "protecting our consumer's privacy is our top priority and we work everyday to safeguard our valued Samsung users."
(c) JuicyChitChats 2015 [Tuesday 25th August]
TAGS: JuicyChitChats-News. Samsung RFSH8HMELBSR Smart Fridge. Ken Munro. Pedro Venda. Pen Test Partners. LiveTalkLearnProsper
HASHTAGS: #JuicyChitChats-News #SamsungRFSH8HMELBSRSmartFridge #KenMunro #PedroVenda #JuicyChitChats-LiveTalkLearnProsper #LiveTalkLearnProsper
Dayum, do we really need smart technology screens everywhere? First the phones, then the TV's and now the fridges. It's just way too much technology so it ain't surprising if hackers are on the loose. They need to rethink this S@%T cos criminals will be watching you in the kitchen thru the damn fridge!!!!
ReplyDeletehahhahaha
DeleteHaha tellum!!!
DeleteEven the innocent baby monitor had a major hacking problem cos people could spy and watch every move. Private intimate moments were out there for the world to see! Hell no, don't need another spy tool cos I value my privacy.
Deletesheeesh
ReplyDeleteI still would buy the fridge regardless
ReplyDeleteThe fridge is A1
ReplyDeleteNothing is safe anymore
ReplyDeletewow
ReplyDeleteSimply considered a few of your photos (: i'm truly glad
ReplyDeletei got to task darkness you. You're fantastic!
Here is my blog :: quần jean nam