Recently researchers better safetyfrom the company ReVuln have published a demonstration video that demonstrates that her Smart TVs Philips are prone to cyber attacks.
According to researchers, some Philips Smart TV versions with the latest firmware upgrades, except that they leave open gates to hackers, are also vulnerable to theft of cookies.
The error it comes from a feature of devices called Miracast, and allows TVs to act as a hotspot with a hard-coded WiFi password. Miracast allows nearby devices to connect to the device to receive the display signal, according to the THN..
"The main problem is that Miracast uses a fixed password, does not need a PIN number, and furthermore does not ask for permission to allow the incoming connection,” Luigi Auriemma, CEO and security researcher at ReVuln, told SCMagazine.
The vulnerability allows an attacker within range of the device's Wi-Fi to access different functions. A potential attacker might:
- Access the TV settings files
- Access files stored on USB devices connected to the TV
- To change what the victim sees on the video screen or pictures of his choice
- Control the TV via a remote control application
- And something also important to steal cookies that contain identity data from the TV browser
"So basically you just connect directly to the TV via WiFi, without restrictions. The Miracas feature is enabled by default and the password cannot be changed, "said Luigi.
Researchers tested vulnerability in a Philips 55PFL6008S model, but believe that many 2013 models are also affected because they run with the same firmware.
Philip says: "Our experts are looking into the matter and working to find a solution. In the meantime, we encourage our customers to turn off the device's Miracast feature until the firmware is updated. ”
