Message from @Beemann
Discord ID: 522478583407575041
Like the oven where the smart feature is turning off a safety feature
uh what?
Yes, there is a smart oven where one of its automated features is that it will basically turn itself off if accidentally left on, and you can turn this feature off wirelessly
From what I remember this was the only smart functionality it had
So giving people control?
not sure thats a safety feature, actualy. I think it will shut off if it gets to hot regardless
Giving anyone with network access the ability to turn off a safety feature, not just you in your own home lol
What do you mean not just in your home?
There are people who had their smart lights hacked for days on end, going into rave mode and spelling out Morse code
network access to your own (w)lan though, right?
id hope
Smart devices can can be remotely accessed via the internet
Most people have shit passwords on their local networks, and if your neighbour has wireless fuck safety oven, you're potentially in danger too
huh
There is a difference between people hacking lights and trying to blow up your oven
Right and the existence of one proves the possibility of the other
The trick is to be very careful about what you add wireless functionality to
i was pretty sure you couldnt even make shit passwords. arent they all like 64 byte or something? Now the access to the admin commands on the router is a different story but for that you first need to have access to the network overall.
Hell, doesn't even have to be ravemode lights
Imagine you can check the status of everyone's lights on a whole street
They can still be bruteforced
How easy will burglars have it now that they can see when nobody is home
House 3's lights have been off for several days, time to loot their shit
Saying that security doesnt evolve
It only evolves if and when people buy into it
And currently it's evolving with the same faults
If it becomes any sort of problem people will buy into it and the devices may very well adapt them also
The fault is inherent in IoT, which is that things that weren't network vulnerable now are
You're adding a whole dimension of security issues
@Existence is identity well it can be bruteforced. but at current levels of technology the sun will be a red giant before thats done at wpa2 for instance with 63 charackters
Not everything is wpa2 though
Brute force isn't even necessary at this point
Phishing and using defaults are still surprisingly effective
must be different over there then.
Most people use defaults actually
Hey normies. I'm back.
Yup
over here, the admin access to the router has default values, but the wpa keys and such are randomised and printed on the buttom of the device.
They've been doing that more recently here
Because the average consumer will not come up with a good pw
true