From Barbie dolls to moving cars: All the things we learned could be hacked in … – Quartz
A lot more people are not only aware of the promise of the Internet of Things, but now actually own items, such as weather-aware fridges, that make their homes â€œsmartâ€ and their lives supposedly easier to manage. But the ever-increasing number of internet-connected devices comes with a significant drawback that was repeatedly exposed in the last 12 months. If 2014 was the year of the internet of things, then 2015 was the year of highlighting its vulnerability to hacking.
Here is a roundup of the yearâ€™s biggestâ€”and in many ways the most worryingâ€”hacks to internet-connected devices.
Wired reporter Andy Greenberg was driving his car on a highway when he suddenly lost control of the vehicle. He sat helplessly as the radio and windshield wipers flickered on, while his engine was unceremoniously cut off. He tried to regain control, but it was hopelessâ€”his car had been hacked while he was driving it.
The reporter was driving a Jeep Cherokee, which boasted an internet-connected entertainment system known as Uconnect. It was the Uconnect installed in the carâ€™s dashboard that security experts Charlie Miller and Chris Valasek were able to exploit and hack from the comfort of a sofa. Greenberg had no idea how paralyzing the attack would be, but at least he knew it was coming.
Fiat Chrysler had to recall 1.4 million vehicles after the hack exposed the Jeepâ€™s vulnerabilities, but itâ€™s not just Cherokees that had the problem; it turned out Tesla cars could be hacked while driving, too, requiring the electric car company to release a patch.
In fact, internet-connected cars have many vulnerabilities, which make them easy to hack.
Security experts have warned that Wi-Fi-enabled toys presents a significant risk to hacking. And this year, it seemed like no toy was safe, not even Barbie.
Experts exposed the vulnerabilities of the internet-connected iconic doll; hackers could steal personal information and turn Barbieâ€™s microphone into a surveillance device, which could have been used to spy on children.
Hackers set their sights beyond smart gadgets this year, hacking into a range of appliances, such as smart fridges and baby monitors, to gain access to personal information and play noises that might sound odd or disturbing to parents, let alone their children.
Earlier this year, researchers at Synack tested the vulnerability of 16 home-automation devices, which included cameras and thermostats. The results were concerningâ€”researchers were able to execute a hack of one kind or another against nearly every device.
Noted the researchers, â€œWe found that in general, the Internet of Things (IoT) industry has some work to do in terms of following best security practices.â€
US government officials sent a stark message on July 31 warning hospitals to disconnect the Symbiq Infusion System, a pump used to administer intravenous drugs, and urging them to transition to a different pump, citing â€œcybersecurity vulnerabilities.â€
While confirming there hadnâ€™t been any â€œunauthorized access of a Symbiq Infusion System,â€ the US Food and Drug Administration acknowledged that hackers could access the pump remotely and change the dosage of critical medicines. The maker of the pump said it would phase out the Symbiq and other similarly connected pumps, at a cost of at least $300 million.
This pump was not the only medical device exposed to hacking this year; a group of students hacked into a pacemaker and demonstrated life-threatening injuries on a simulated human.