You’d surprise why somebody would wish a Bluetooth-enabled hair straightener of all issues however one does exist. Glamoriser, an organization primarily based in the UK, sells what it claims to be the “world’s first Bluetooth hair straightener.” Customers can hyperlink the system to an app in an effort to set warmth and elegance settings. It can be used to change off the straighteners inside Bluetooth vary remotely. Seems, it’s fairly simple to hack as effectively.
That’s the factor about making each system “good.” As soon as it turns into a related system, the door is open simply sufficient for hackers to attempt to pressure their means by way of. Pen Check Companions safety researchers had been capable of do exactly that with the Bluetooth hair straightener. They may simply ship malicious Bluetooth instructions inside vary and thus remotely management somebody’s straighteners.
The researchers confirmed how they might ship a malicious command to set the temperature to both the higher or decrease restrict of the system which is 122°F and 455°F respectively. Since there’s no authentication choice for the straighteners, this enables an attacker to remotely change and override the temperature and the length for which the system is to remain on.
They level out that if a malicious command is distributed to the system and it’s stored on the most temperature for 20 minutes, it might pose a severe fireplace hazard. The one upside right here is that for the reason that straighteners solely permit one concurrent connection, a hacker will solely be capable of goal the system so long as the proprietor hasn’t related their cellphone to it.
Filed in. Learn extra about Hacking. Supply: pentestpartners