Guaranteed to have a backdoor installed?
Same security as a TSA approved lock?
Meanwhile, the vendors are introducing security vulnerabilities marketed as features, even in protocols that would be reasonably secure otherwise…
Such as?
Zigbee devices that can be remotely reset back into pairing mode.
Oh man I was just about to zigbee everything in my house. Have you got more information about this?
It’s a vendor specific thing, so if that bothers you, just look up the pairing procedure for each device before buying.
As far as I remember, the philips bulbs can be reset by holding on and off buttons on the remote. This functinality has a limited range, but a sophisticated attacker could probably just bring a better antenna.
In practice, the compatibility issues will probably keep you busy enough not to think about the theoretical attacks.
Sorry, I didn’t mean to discourage you. Practically all the lights in my house, and some other stuff like blinds and aquarium equipment, are running on zigbee. When you finally tune it just right, it’s pretty great.
Well apple just got in trouble for eavesdropping on it’s users, so…
I doubt Siri eavesdropping was a bug.
“Goddamnit, Cyber Trust Mark! None of these devices are remotely secure enough! I knew we should have sprung for the more expensive Cyber Trust Kelly, but everyone was like, ‘nO, tHiS mOdEL iS BaSiCaLly tHe SaMe…SaVe A fEw DoLlArS…’”
