ZigBee, Z-wave and Thread have virtually 0 attack surface from an IoT perspective, and even then what are they gonna do, do radio hacking to turn off and on my lights? It’s not like they can be used in a botnet.
Locks is a bit more risky as an endeavor, but again, it’s probably easier to pick the lock than hack it… Actually with the quality of many smart locks, smashing them is easier still.
Smart TVs are way more problematic devices for example, as soon as they stop receiving updates, you have a bunch of high-speed internet connected devices with unresolved exploits just sitting there waiting for the right chance.
ive used smart light bulbs in a botnet before. and if you do a teardown on one of those locks you can probably get the firmware and uart to get the unlock function which you could use theoretically to unlock every single one
Yeah that’s why I never mentioned WiFi ones. Which can still be secured by not letting them access the rest of the network or the internet. That’s what we do in industrial automation, security standards for PLC software tend to suck, but that’s irrelevant if it can’t be reached.
and if you do a teardown on one of those locks you can probably get the firmware and uart to get the unlock function which you could use theoretically to unlock every single one
I don’t see how that’s relevant for a lock that’s inside an armoured door, it’s only accessible by disassembling the door, at which point unlocking it is moot.
I feel the meme in the post is created by someone pseudoilliterate in technology. But I can guaranty you they have a smart TV connected to the same WiFi as all their computers and maybe a nas or home server.
Setting up zwave or ZigBee networks is not an attack vector.
ZigBee, Z-wave and Thread have virtually 0 attack surface from an IoT perspective, and even then what are they gonna do, do radio hacking to turn off and on my lights? It’s not like they can be used in a botnet.
Locks is a bit more risky as an endeavor, but again, it’s probably easier to pick the lock than hack it… Actually with the quality of many smart locks, smashing them is easier still.
Smart TVs are way more problematic devices for example, as soon as they stop receiving updates, you have a bunch of high-speed internet connected devices with unresolved exploits just sitting there waiting for the right chance.
ive used smart light bulbs in a botnet before. and if you do a teardown on one of those locks you can probably get the firmware and uart to get the unlock function which you could use theoretically to unlock every single one
Yeah that’s why I never mentioned WiFi ones. Which can still be secured by not letting them access the rest of the network or the internet. That’s what we do in industrial automation, security standards for PLC software tend to suck, but that’s irrelevant if it can’t be reached.
I don’t see how that’s relevant for a lock that’s inside an armoured door, it’s only accessible by disassembling the door, at which point unlocking it is moot.
Hear hear.
I feel the meme in the post is created by someone pseudoilliterate in technology. But I can guaranty you they have a smart TV connected to the same WiFi as all their computers and maybe a nas or home server.
Setting up zwave or ZigBee networks is not an attack vector.