1. TechSpot is dedicated to computer enthusiasts and power users. Ask a question and give support. Join the community here.
    TechSpot is dedicated to computer enthusiasts and power users.
    Ask a question and give support.
    Join the community here, it only takes a minute.
    Dismiss Notice

Not so smart: Samsung's new fridge might expose your private data

By dkpope ยท 8 replies
Aug 25, 2015
Post New Reply
  1. [parsehtml]<p><img src="https://www.techspot.com/images2/news/bigimage/2015/08/2015-08-25-image-8.jpg" /></p> <p>Now it&rsquo;s not just phones that are smart, it&rsquo;s TVs and <a href="https://www.techspot.com/news/61397-waste-management-company-plans-turn-nyc-trash-cans.html">trash cans </a>and appliances too. But there might be some consequences lurking underneath all the smart bells and whistles. Security issues have been widely documented along with the rise of the Internet of Things, so Samsung set <a href="http://www.pentestpartners.com/blog/hacking-defcon-23s-iot-village-samsung-fridge/">Pen Test Partners researchers to work on their smart refrigerator</a> to find vulnerabilities.</p> <p>At the annual Defcon black hat event in Las Vegas, the team hacked into the 2015 Samsung RF28HMELBSR smart fridge that features a display on the door to show calendar appointments and notes.</p> <p>If Samsung hoped to pass with flying colors, they didn&rsquo;t. The team found that the fridge can be forced to share secure communications with relative ease.</p> <p>In a <a href="http://www.pentestpartners.com/blog/hacking-defcon-23s-iot-village-samsung-fridge/">blog post</a>, the Pen Test Partners team wrote that the fridge does implement SSL, but doesn&rsquo;t verify if security certificates are valid or not.</p> <p>So if attackers use a man-in-the-middle attack, they can steal data such as passwords and session tokens from the fridge. Also, since it integrates with Google Calendar, the team said it would be easy to expose a user&rsquo;s Gmail credentials by targeting the fridge.</p> <p>Consumers might question the high price tag -- the fridge costs almost $3,600 -- when security isn&#39;t guaranteed. Until problems like this are controlled, the safest option might be to go out and buy a magnetic whiteboard to stick on your regular fridge. At least that way it&#39;s harder for the neighbors to steal your information.</p><p><a rel='alternate' href='https://www.techspot.com/news/61883-not-smart-samsung-new-fridge-might-expose-private.html' target='_blank'>Permalink to story.</a></p><p class='permalink'><a rel='alternate' href='https://www.techspot.com/news/61883-not-smart-samsung-new-fridge-might-expose-private.html'>https://www.techspot.com/news/61883-not-smart-samsung-new-fridge-might-expose-private.html</a></p>[/parsehtml]
  2. ikesmasher

    ikesmasher TS Evangelist Posts: 2,862   +1,182

    Because we dont already have enough screens on phones, tablets, watches, computers, and TVs - we need one on our fridge too.
    BMfan likes this.
  3. EEatGDL

    EEatGDL TS Evangelist Posts: 535   +210

    It's not the screens the ones to blame. The issue is to communicate it without the addecuate measures. You could put a display in your closet for any infomatic reason without any communication (Bluetooth, ZigBee, wi-fi, ...) and that wouldn't be necessarily a security flaw.
  4. ikesmasher

    ikesmasher TS Evangelist Posts: 2,862   +1,182

    I appear to have been misunderstood - I was not necessarily referring literally to the screen, but the real lack need for of another smart device on a fridge when we have so many already.
  5. VitalyT

    VitalyT Russ-Puss Posts: 3,453   +1,732

    When malfunctioning or out of power, fridges used to leak only water, but now they can also leak all your private data.

    The moral of the story - freezing data doesn't work, you should encrypt it instead!

    And as far as the fridges go, they can be used as a form of art:

    Last edited: Aug 25, 2015
    wiyosaya, ikesmasher and BMfan like this.
  6. I can't wait for the smart toilet,then I wouldn't need to take my phone into the bathroom.
  7. VitalyT

    VitalyT Russ-Puss Posts: 3,453   +1,732

    As bad as it sounds, there is a plenty of health-related stuff one can draw from analysing your piss & crap :) But perhaps it is one of those cases when ignorance is really a bliss :)
    BMfan likes this.
  8. Skidmarksdeluxe

    Skidmarksdeluxe TS Evangelist Posts: 7,979   +2,870

    All my life I wanted a smart fridge with a display and calender that cost the earth so I could show off with it but they never made them 40 years ago, it's too late to try interest me now.
  9. wiyosaya

    wiyosaya TS Evangelist Posts: 1,519   +513

    Somehow, this just does not seem like news - given what the majority of readers on this site already know about IOT devices.

    If there is a story here, at least as I see it, it is that Samsung has once again failed to provide adequate security measures for yet another of their "smart" devices while pursing the almighty dollar by bottom feeding on the latest fad. Sounds like a pattern to me...

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...