this post was submitted on 28 Nov 2023
175 points (97.8% liked)

Technology

59374 readers
3586 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

The smart home tech inside your home is less secure than you think, new Northeastern research finds.::A team of researchers discovered vulnerabilities in smart home devices made by big technology companies like Google.

all 38 comments
sorted by: hot top controversial new old
[–] [email protected] 94 points 11 months ago (2 children)

The S in IoT is for Security

[–] [email protected] 7 points 11 months ago

This perfectly encompasses the situation.

[–] [email protected] 7 points 11 months ago (1 children)

So.. am I secured if I buy more than 1?

[–] [email protected] 2 points 11 months ago

Yes but only during the full moon can Sailor Moon really keep you safe. Also, only when it's still in the box.

[–] [email protected] 75 points 11 months ago* (last edited 11 months ago)

Idk, that seems exactly as secure as I thought.

[–] [email protected] 45 points 11 months ago (1 children)

If you care about this, but still want smart home tech, look into Home Assistant and use local-only devices.

[–] [email protected] 4 points 11 months ago

I could also extend that to Tasmota or espHome. They are both open source firmware for IoT devices. They update regularly, and are unlikely to be completely abandoned without warning. While you can flash it to devices yourself, you can also buy a number of devices with it pre-installed.

While I still consider all IoT devices inherently insecure, and treat them as such, these are a lot better than the other random options out there.

[–] [email protected] 30 points 11 months ago
[–] [email protected] 27 points 11 months ago

Joke's on you: I don't think it's secure and I don't have any!

[–] [email protected] 17 points 11 months ago (1 children)

no because its not in my home. good luck hacking my mechanical thermostat.

[–] [email protected] 17 points 11 months ago (2 children)

Some skinny dude in a Guy Fawkes mask sneaks in through the dog door and turns up the heat while you're at work

[–] [email protected] 6 points 11 months ago (2 children)

Where'd my kid get a Guy Fawkes mask?

Seriously, though, who cranks the thermostat to 30 and walks out the door?

[–] [email protected] 8 points 11 months ago

The guy wearing a guy Fawkes mask. Didn't you listen?

[–] [email protected] 3 points 11 months ago (1 children)

86F for my fellow Americans.

[–] [email protected] 2 points 11 months ago

Thanks for not just assuming I keep my house below freezing!

[–] [email protected] 2 points 11 months ago* (last edited 11 months ago) (1 children)

Point taken. But I don't go anywhere for work lol

[–] [email protected] 1 points 11 months ago (1 children)

Oh no, my good sir, not while you go into work.

While you're at work. If you're WFH, you could be staring at the door, that person is coming through the dog door anyway.

[–] [email protected] 2 points 11 months ago

Mr. Doggy Man is going to get a stern lecture I can tell you

[–] [email protected] 11 points 11 months ago

I can assure you, it is not.

[–] [email protected] 10 points 11 months ago (1 children)

It's as insecure as it appears to be...like I expected.

https://www.candlesmarthome.com/

[–] [email protected] 10 points 11 months ago (1 children)

I just love when developers are so close to a project that they forget to even explain what the thing is. I see this all the time with interesting projects like this.

What is it? Some kind of network device?

[–] [email protected] 3 points 11 months ago

Looks like it’s a zigbee network device that is privacy forward, or something.

[–] [email protected] 10 points 11 months ago

Hypponen’s Law: If It’s Smart, It’s Vulnerable

[–] [email protected] 6 points 11 months ago (1 children)

I'm not overly convinced that anyone would be able to abuse any of my ghetto diy smart home gadgets

[–] [email protected] 1 points 11 months ago

"who shut my tv off?!"

[–] [email protected] 4 points 11 months ago

I know how insecure it is. Its always talking about how it feels sidelined and its feeling are hurt when I throw it in the trash.

[–] [email protected] 3 points 11 months ago

Sometimes it’s smart to be stupid…or I guess not smart with everything.

[–] [email protected] 3 points 11 months ago

The vast majority of this stuff should be called "dumb devices", as in "dumb terminal".

[–] [email protected] 2 points 11 months ago* (last edited 11 months ago)

Sometimes it’s smart to be “stupid.”

[–] [email protected] 2 points 11 months ago

Couldn't possible be