As an advancement in Internet there comes a new era in which all electronic components are made smart by connecting them to the Internet in the name of #IoT (Internet of Things). Recently a security issue has been raised due to a IoT device.
Security has been a major issue which threatens the whole cyber security industry if IoT is considered and now the security problem in the Smart Doorbell has been discovered.
Smart Doorbells are one such component that will produce the message to the phone if any user presses the door bell and even the user can see the image of the visitor through camera. Owner can even communciate with the visitor without evening opening the door.
The device has many other feature and it has been served as one such amazing component and then the security researchers started their work on this new smart device.
When the orange button behind the door bell is pressed the door bell can be changed to the Access Point (AP). An Access Point is the component through which Internet connectivity can be obtained.
After activating it as an AP then if any user connects to it and then navigating to the IP http://IP/gainspan/system/config/network then the user can see the home wi-fi password as plain text in the config file.
This means if any attacker presses the orange button and activating the device as AP can get the Home Wi-Fi password or the Wi-Fi password to which the door bell has been connected.
It is said that the component should be hidden from public viewing.
P.S: The post is to create awareness and not to create any negative impact.
No comments:
Post a Comment