You’d marvel why somebody would want a Bluetooth-enabled hair straightener of all issues however one does exist. Glamoriser, an organization primarily based in the UK, sells what it claims to be the “world’s first Bluetooth hair straightener.” Customers can hyperlink the machine to an app as a way to set warmth and elegance settings. It may also be used to modify off the straighteners inside Bluetooth vary remotely. Seems, it’s fairly simple to hack as nicely.
That’s the factor about making each machine “sensible.” As soon as it turns into a linked machine, the door is open simply sufficient for hackers to attempt to power their method by. Pen Check Companions safety researchers have been in a position to just do that with the Bluetooth hair straightener. They might simply ship malicious Bluetooth instructions inside vary and thus remotely management somebody’s straighteners.
The researchers confirmed how they might ship a malicious command to set the temperature to both the higher or decrease restrict of the machine which is 122°F and 455°F respectively. Since there’s no authentication possibility for the straighteners, this enables an attacker to remotely change and override the temperature and the length for which the machine is to remain on.
They level out that if a malicious command is shipped to the machine and it’s stored on the most temperature for 20 minutes, it might pose a severe hearth hazard. The one upside right here is that because the straighteners solely permit one concurrent connection, a hacker will solely be capable to goal the machine so long as the proprietor hasn’t linked their telephone to it.
Filed in. Learn extra about Hacking. Supply: pentestpartners