Unsafe Kettle Wifi

US Senators recommend stronger security levels on wifi enabled devices

12:25 10 September 2017

Smart gadgets, also known as Internet of Things (IoT) devices, are often associated with flaws related to their online connections and simple functions. Their weaknesses can easily be exploited by hackers to gain access to the user’s home’s WiFi network. This worsening problem has pushed four US senators to introduce a bill requiring connected devices to reach a minimum standard of security.

 

Jason Hart, a researcher at Gemalto Security, showed just how serious the problem is by showing how a Smarter’s iKettle, a WiFi-enabled gadget can be used by hackers. The kettle lets users boil water from a smartphone. It sends notifications once the water is ready and keeps the water hot. Its password, which Hart broke in minutes, is 000000 and cannot be changed. A hard-coded password is a security flaw in many IoT devices, Hart noted.

 

"The attacker could use the kettle itself to gain access to your home Wi-Fi," Hart said. "Someone could come along and extract your home Wi-Fi remotely, and then use it against your network."