Exploits in iOT garage door opener, Samsung smart TVs

April 11, 2017 BY Neil Ford from IT Governance Ltd.

  This week PodCast by IT Governance Ltd, Click here and tune in   - a new vulnerability in LastPass’s browser extensions,    - phishing at Teaching ...

"see no evil, hear no evil, speak no evil" . More exploits found in things that our daily life depends on.

 

This week PodCast by IT Governance Ltd, Click here and tune in
 
- a new vulnerability in LastPass’s browser extensions, 
 
- phishing at Teaching Hospitals NHS Trust, 
sent a fake phishing email to see staff tricked into disclosing confidential information. 
Testing staff vulnerability to phishing attacks is a vital part of any risk-based information security management system
 
- Internet-connected garage door opener Garadget, 
 
- a new exploit that hacks Samsung smart TVs via radio signals.
* the Weeping Angel attack, an exploit apparently used by the CIA to hack Samsung smart TVs. this attack is far simpler: it “uses a low-cost radio transmitter to embed malicious commands into a rogue TV signal."
* and what can be possible, "if a TV station was compromised, the attackers could surreptitiously embed malicious code into the signal being broadcast to millions of TVs. Embedding malicious commands into broadcasts from cable or satellite providers is also theoretically possible"