The fridge in question will display your Google Calendar information – because looking at your phone or your tablet is too much trouble. Samsung Fridge Hack Means You're More Likely To Have Your Gmail Password Stolen Than Drink A Warm Beer.
The Internet of Things can actually be useful. Unfortunately, security costs money, and so corporations aren’t that interested. The result is more ways for your private information to be stolen.
Pen Test Partners discovered the vulnerability during a hacking challenge at the Def Con security conference in Las Vegas earlier this month. It’s only the latest Internet of Things vulnerability to make waves among unsuspecting device owners, with the revelation Samsung TVs failed to encrypt voice communications recorded in customer’s homes. It also comes after the exposure of a number of security weaknesses in some of the most popular U.S. vehicles.
Samsung wants you to know that protecting your privacy is a “top priority.” Just not enough of a priority that they would ensure that a web enabled device supported secure sockets certificates. (Actually, secure sockets have been replaced by Transport Layer Security – but the certificates are still in play.) Secure sockets date from the mid-1990s, so there really is no excuse for Samsung to not think about SOME level of security. Except of course that Security costs Money. And the average consumer doesn’t want to think about that. (It isn’t a bell, and it isn’t a whistle, so why should you pay for it?)
I get that families need to be able to see what is scheduled. Soccer practice. Music lessons. Whatever. But is posting it to the fridge really the answer?