1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Your lightbulbs can be hacked to breach your Wi-Fi network

    From TechnologyDaily@1337:1/100 to All on Tue Aug 22 10:00:03 2023
    Your lightbulbs can be hacked to breach your Wi-Fi network

    Date:
    Tue, 22 Aug 2023 09:43:36 +0000

    Description:
    A popular smart lightbulb carried multiple vulnerabilities which could be abused by hackers, researchers claim.

    FULL STORY ======================================================================

    TP-Links popular smart lightbulb and its companion mobile app were found to
    be carrying multiple high-severity flaws which could allow hackers to gain access to the connected Wi-Fi network.

    That, in turn, could allow threat actors to access other endpoints on the network, which could give them access to sensitive data, or allow them to deploy different malware and ransomware.

    This is according to cybersecurity researchers from the Italian Universita di Catania, and their peers from the University of London. As reported by BleepingComputer, the researchers from these two universities analyzed the "top-selling" TP-Link Tapo L530E and its companion app, which has approximately 10 million installations on Google Play alone. Four vulnerabilities

    In total, the researchers uncovered four vulnerabilities. The first two (severity scores 8.8 and 7.6.) could be chained to impersonate the lightbulb on the network, and thus retrieve the Tapo user account details. This information can then be used to extract the targets Wi-Fi SSD and password.

    The fourth vulnerability can be used to launch so-called replay attacks,
    which the attackers can use to make functional changes in the lightbulb. Read more

    A new Mirai variant is attacking Linux devices to build a beastly DDoS
    botnet


    Mirai botnet now targeting critical flaw in thousands of routers


    These are the best firewalls around

    The researchers said they reached out to TP-Link with their findings, which the company subsequently acknowledged. It also said that it would release a patch soon. Other than that, TP-Link is currently silent on the matter, BleepingComputer concluded.

    Smart devices and home appliances could be a great way to automate some of
    the more mundane household tasks, but they also present unique security challenges. Cybersecurity researchers agree that these devices should be kept on a separate network and that they should always be up-to-date.

    Recently, its was found that many older Canon printers carry a flaw that
    allow others to access the Wi-Fi SSIDs and passwords stored in their memory. It therefore warned users to make sure to delete all network information
    prior to discarding or reselling the affected models. Check out the best endpoint protection software around

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/your-lightbulbs-can-be-hacked-to-breach -your-wi-fi-network


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)