[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
www/proprietary proprietary-insecurity.html pro...
|
From: |
Atul Murali |
|
Subject: |
www/proprietary proprietary-insecurity.html pro... |
|
Date: |
Mon, 27 Mar 2017 04:12:50 -0400 (EDT) |
CVSROOT: /web/www
Module name: www
Changes by: Atul Murali <atulm> 17/03/27 04:12:49
Modified files:
proprietary : proprietary-insecurity.html
proprietary-surveillance.html
Log message:
[#1174181] Add surveillance and insecurity in some "smart" toys
CVSWeb URLs:
http://web.cvs.savannah.gnu.org/viewcvs/www/proprietary/proprietary-insecurity.html?cvsroot=www&r1=1.46&r2=1.47
http://web.cvs.savannah.gnu.org/viewcvs/www/proprietary/proprietary-surveillance.html?cvsroot=www&r1=1.107&r2=1.108
Patches:
Index: proprietary-insecurity.html
===================================================================
RCS file: /web/www/www/proprietary/proprietary-insecurity.html,v
retrieving revision 1.46
retrieving revision 1.47
diff -u -b -r1.46 -r1.47
--- proprietary-insecurity.html 15 Mar 2017 02:13:57 -0000 1.46
+++ proprietary-insecurity.html 27 Mar 2017 08:12:47 -0000 1.47
@@ -28,6 +28,16 @@
<ul>
<li>
+<p>The "smart" toys My Friend Cayla and i-Que can be
+<a
href="https://www.forbrukerradet.no/siste-nytt/connected-toys-violate-consumer-laws";>remotely
controlled with a mobile phone</a>; physical access
+is not necessary. This would enable crackers to listen in on a child's
+conversations, and even speak into the toys themselves.</p>
+
+<p>This means a burglar could speak into the toys and ask the child to
+unlock the front door while Mommy's not looking.</p>
+</li>
+
+<li>
<p>The mobile apps for
communicating <a
href="https://www.bleepingcomputer.com/news/security/millions-of-smart-cars-vulnerable-due-to-insecure-android-apps/";>with
a smart but foolish car have very bad security</a>.</p>
@@ -412,7 +422,7 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2017/03/15 02:13:57 $
+$Date: 2017/03/27 08:12:47 $
<!-- timestamp end -->
</p>
</div>
Index: proprietary-surveillance.html
===================================================================
RCS file: /web/www/www/proprietary/proprietary-surveillance.html,v
retrieving revision 1.107
retrieving revision 1.108
diff -u -b -r1.107 -r1.108
--- proprietary-surveillance.html 18 Mar 2017 16:07:57 -0000 1.107
+++ proprietary-surveillance.html 27 Mar 2017 08:12:47 -0000 1.108
@@ -660,6 +660,17 @@
<ul>
<li>
+ <p>The "smart" toys My Friend Cayla and i-Que transmit
+ <a
href="https://www.forbrukerradet.no/siste-nytt/connected-toys-violate-consumer-laws";>children's
conversations to Nuance Communications</a>,
+ a speech recognition company based in the U.S.</p>
+
+ <p>Those toys also contain major security
vulnerabilities; crackers
+ can remotely control the toys with a mobile phone. This would
+ enable crackers to listen in on a child's speech, and even speak
+ into the toys themselves.</p>
+ </li>
+
+ <li>
<p>A computerized vibrator
<a
href="https://www.theguardian.com/technology/2016/aug/10/vibrator-phone-app-we-vibe-4-plus-bluetooth-hack";>
was snooping on its users through the proprietary control app</a>.</p>
@@ -1225,7 +1236,7 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2017/03/18 16:07:57 $
+$Date: 2017/03/27 08:12:47 $
<!-- timestamp end -->
</p>
</div>
- www/proprietary proprietary-insecurity.html pro...,
Atul Murali <=