You’d marvel why somebody would wish a Bluetooth-enabled hair straightener of all issues however one does exist. Glamoriser, an organization primarily based in the UK, sells what it claims to be the “world’s first Bluetooth hair straightener.” Customers can hyperlink the system to an app in an effort to set warmth and magnificence settings. It may also be used to modify off the straighteners inside Bluetooth vary remotely. Seems, it’s fairly simple to hack as effectively.
That’s the factor about making each system “sensible.” As soon as it turns into a related system, the door is open simply sufficient for hackers to attempt to pressure their means via. Pen Check Companions safety researchers had been in a position to just do that with the Bluetooth hair straightener. They may simply ship malicious Bluetooth instructions inside vary and thus remotely management somebody’s straighteners.
The researchers confirmed how they might ship a malicious command to set the temperature to both the higher or decrease restrict of the system which is 122°F and 455°F respectively. Since there’s no authentication possibility for the straighteners, this enables an attacker to remotely change and override the temperature and the length for which the system is to remain on.
They level out that if a malicious command is shipped to the system and it’s saved on the most temperature for 20 minutes, it may pose a severe fireplace hazard. The one upside right here is that for the reason that straighteners solely permit one concurrent connection, a hacker will solely be capable to goal the system so long as the proprietor hasn’t related their cellphone to it.
Filed in. Learn extra about Hacking. Supply: pentestpartners