Slashdot Mirror

← Back to Stories (view on slashdot.org)

IoT Devices Are Secretly Phoning Home (thenewstack.io)

Posted by BeauHD on from the fear-the-internet dept.

An anonymous reader writes: A popular internet-enabled security camera "secretly and constantly connects into a vast peer-to-peer network run by the Chinese manufacturer of the hardware," according to security blogger Brian Krebs. While the device is not necessarily sharing video from your camera, it is punching through firewalls to connect with other devices. Even if the user discovers it, it's still extremely hard to turn off. Krebs notes that the same behavior has been detected in DVRs and smart plugs -- they're secretly connecting to the same IP address in China, apparently without any mention of this in the product's packaging. One security researcher told Krebs the behavior is an "insanely bad idea," and that it opens an attack vector into home networks.

4 of 196 comments (clear)

  1. Have some fun by PPH · · Score: 4, Funny

    Set up a honeypot consisting of a Chinese DVR and a bunch of security cams pointing at pictures of Minuteman ICBMs sitting in their silos. Sit back and watch your IP address get hacked.

    --
    Have gnu, will travel.
  2. Re:it's not a secret by arglebargle_xiv · · Score: 3, Funny

    You're only saying that because you've never seen "ET Porn Home" in all its VHS glory.

  3. Re:Insanely bad idea? by bigdavex · · Score: 3, Funny

    Fuck that, I want my toaster connected to the internet why again?

    How else do you think it will keep its antivirus software up-to-date?

    --
    -Dave
  4. Re: Not new by Anonymous Coward · · Score: 2, Funny

    Just configure it to phone home so you can update its configuration periodically to cover new IoT devices that phone home....