“The backdoor is present in almost all devices produced by VoIP specialist DBLTek, and appears to have been purposely built in for use by the vendor,” Barker reports. “The issue permits a remote attacker to gain a shell with root privileges on the affected device.
Barker reports, “Full details of the exploit and the devices affected can be found on the Trustwave blog.”
Read more in the full article here.
MacDailyNews Take: For home automation, smart people go the HomeKit route.
DDoS attack: Apple’s HomeKit for a safer smarthome – October 24, 2016
Honeywell unveils Apple HomeKit-compatible Lyric T5 Wi-Fi thermostat – September 27, 2016
Google’s flaky Nest thermostat shakes users’ trust in the Internet of Things – January 19, 2016
Google’s Nest thermostat bug leaves users cold, angry – January 14, 2016
Honeywell announces ‘Lyric Round’ smart thermostat with Apple HomeKit integration – January 5, 2016
Apple HomeKit-compatible thermostat Ecobee closes in on Google’s Nest – September 28, 2015
Apple pulls Google’s Nest thermostat from stores with launch of HomeKit-compatible Ecobee 3 – July 23, 2015
First Apple-certified HomeKit-compliant devices launch – June 2, 2015
Google engineer trashes Tony Fadell’s precious Nest smoke alarm – February 19, 2015