This has been revealed by the security researchers of Check Point, who found critical errors in the mobile app and in the cloud platform linked to LG’s SmartThinQ range of devices, which consists of a selection of Internet of Things devices (IoT) that include smart vacuum cleaners, washing machines, refrigerators and ovens, which are remotely controlled by a Smartphone. Researchers from the security company Check Point were responsible for carrying out the analysis as we told earlier, whose failures were called “HomeHack”, and which allowed hackers to take control of the accounts of LG users, who in turn they gave access through the connected devices. In this sense, the research team explained: “By manipulating the login process and entering the victim’s email address instead of their own, it was possible to hack into the victim’s account and take control of all LG SmartThinQ devices owned by the user, including the Hom-Bot robot vacuum cleaner, refrigerators, ovens, dishwashers, washing machines and dryers, and air conditioning units”. In some cases, the devices could be turned on and off without user supervision. The security company also highlighted the defects in the intelligent vacuum cleaner Hom-Bot, specifically with its camera, with which it is possible to spy on users live.
Undoubtedly, this is one of the most serious cases exposed in the publication, since hackers could invade the privacy of users and violate their personal safety. These vulnerabilities were revealed to LG on July 31, and the company managed to correct them at the end of last month. The researchers cautioned that as more smart devices are used within the home, the risks of hackers violating user privacy increase. In addition, they urged IoT device manufacturers to protect these products against these attacks, by implementing a robust security system during software design. For its part, Check Point suggested to users to ensure that they have installed the latest mobile security updates, through Google Play and Apple stores. LG home devices should be updated with the latest version of the software through the SmartThinQ app. So, what do you think about this? Simply share your views and thoughts in the comment section below.