Philips Smart TVs riddled with security and privacy flaws, researcher reveals

  • 28 March 2014
  • 5 replies
  • 1381 views

Userlevel 7
Badge +52
A researcher has discovered that so-called Smart TVs from Philips suffer from a number of serious security flaws that could allow hackers to not only steal information from attached USB sticks, and play pornographic movies as a prank, but also pilfer authentication cookies which could give them access to viewers’ online accounts.
 
As Ars Technica reports, the serious security problem was uncovered by Luigi Auriemma of the Revuln security research group.
 
Full Article

5 replies

Userlevel 7
Stealing data from USB sticks via security flaws in a modern TV - it's just amazing! ;)
 
 
Userlevel 7
Badge +52


 
😃
Userlevel 5
Wow thank god my mom and dad didn't buy that smart tv
Userlevel 7
Badge +52

Researchers at ReVuln firm demonstrated how to exploit the last firmware update for Philips SmartTV to steal user’s cookies and other sensitive data.

The excellent team of researchers at ReVuln firm has published another interesting analysis on the possibility to hack Philips SmartTV to steal user’s cookies.
 
The news is disconcerting and raise serious concerns for user’s privacy, the team of experts succeeded to steal user’s cookies despite the Philips SmartTV is running the latest firmware version, the attacker just need to be within radio range.
The attack was conducted against Philips SmartTV which implements theMiracast standard, a peer-to-peer wireless screencasting standard formed via Wi-Fi Direct connections, similar to the Bluetooth protocol.
 
Devices that enable Miracast can exchange audio and video to or from a PC and any kind of mobile devices.
As explained by Luigi Auriemma, a researcher at ReVuln (@revuln), the attack to the Philips SmartTV is possible exploiting a recent firmware update that allows anyone within range to connect to the TV simply providing the password “Miracast” that has been hard-coded in the Philips devices.
 
Full Article & Video
Userlevel 7
The following is a update on Smart TVs
 

Smart TVs Vulnerable to Multiple Cyber Threats, Study Reveals
 
By: Alexandra Gheorghe
 
Summary/
http://www.hotforsecurity.com/wp-content/uploads/2014/06/iStock_000022433480Small-300x198.jpgA new digital television standard, called Hybrid Broadcast-Broadband Television (HbbTV), can be exploited by hackers to “invisibly” hijack Europeans’ smart TVs using radio frequency injection, according to research by the Columbia University’s Network Security Lab.
By including HTML content into broadcast streams, HbbTV exposes a TV set to numerous security weaknesses. “Exploiting these vulnerabilities, an attacker can cause thousands of devices to interact with any website, even using any credentials stored in the TV sets for accessing services such as social networks, webmail or even e-commerce sites,” the study says.
 
HotforSecurity/ Full Read Here/http://www.hotforsecurity.com/blog/smart-tvs-vulnerable-to-multiple-cyber-threats-study-reveals-9219.html

Reply