"Hackers Can Peep Through This Smart Vacuum’s Camera, Research Shows"
Researchers at the cybersecurity firm Checkmarx have discovered multiple security vulnerabilities in the internet-connected Trifo Ironpie robot vacuum. One of the most severe vulnerabilities contained by the device could allow attackers to get a view of a user's home via the smart vacuum's camera. The exploitation of this vulnerability lets hackers access the video stream remotely. Another vulnerability could allow hackers to send fake software updates, tricking users into downloading malware. The abuse of other vulnerabilities could allow hackers to perform malicious activities such as sending commands to the device, accessing the map generated by Ironpie to get information about users' rooms, and more. This discovery brings further attention to the importance of improving the security of the Internet of Things (IoT) devices and how the exploitation of security flaws contained by these devices could impact users. This article continues to discuss the vulnerabilities found in the Trifo Ironpie robot vacuum, the types of attacks that are possible through the exploitation of these flaws, and the need to bolster IoT security.
CNET reports "Hackers Can Peep Through This Smart Vacuum’s Camera, Research Shows"