20 matches found
Maintaining Security and Protecting Smart Home Devices from Hackers
Learn how to protect smart home devices from hackers. Strong passwords, updates and secure networks help keep cameras, sensors and data safe...
EUVD-2025-11143
Malicious code in bioql PyPI...
CVE-2019-15913
An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM, RTCGQ01LM devices. Because of insecure key transport in ZigBee communication, causing attackers to gain sensitive information and denial of service attack, take over smart home devices, and tamper with messages...
CVE-2025-31654
An attacker can get information about the groups of the smart home devices for arbitrary users i.e., "rooms"...
CVE-2025-31654 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
An attacker can get information about the groups of the smart home devices for arbitrary users i.e., "rooms"...
CVE-2025-31654
CVE-2025-31654 concerns Growatt Cloud Applications where an attacker can obtain information about the groups of smart home devices for arbitrary users (i.e., the users’ “rooms”). The CVE appears across multiple sources (NVD, Red Hat, CVE List, CVSS metrics) and is associated with the Growatt clou...
PT-2025-16493 · Growatt · Cloud Portal
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An attacker can obtain information about the groups of smart home devices for arbitrary users, referred to as "rooms". Recommendations: At the moment, there is no information about a newer...
Growatt Cloud Applications 安全漏洞
Growatt Cloud Applications is a monitoring platform from Growatt, a Chinese company. A security vulnerability exists in Growatt Cloud Applications version 3.6.0 and earlier, which stems from an attacker's ability to gain access to any user's smart home device group information...
Envoy 安全漏洞
Envoy is an Enphase open source gateway program for connecting smart home devices. A security vulnerability exists in versions prior to Envoy 1.32.0 that stems from allowing an external client to manipulate the Envoy header, which can lead to unauthorized access or other malicious operations with...
编号撤回
Envoy is an Enphase open source gateway program for connecting smart home devices. This CVE number has been withdrawn...
Hackers using smart home devices to live streaming swatting attacks
By Deeba Ahmed The F.B.I. is warning users to use strong credentials to prevent their smart devices from being used during swatting attacks. Here's how to. This is a post from HackRead.com Read the original post: Hackers using smart home devices to live streaming swatting attacks...
Manipulating Systems Using Remote Lasers
Many systems are vulnerable: Researchers at the time said that they were able to launch inaudible commands by shining lasers -- from as far as 360 feet -- at the microphones on various popular voice assistants, including Amazon Alexa, Apple Siri, Facebook Portal, and Google Assistant. … They...
How AI and Voice Technology is Similar to a Service Dog
Can a more complex comparison be made? AI and voice assistance are similar to a seeing-eye dog. Throwing the duties of a service dog into the same court as technology is outlandish as things get, even in the middle of an ever-shifting pandemic. But with retail software development services workin...
IoT Insecurity: When Your Vacuum Turns on You
SAN FRANCISCO – Hackable Internet of Things IoT devices are on full display this week at the RSA Conference 2020. They include everything from baby monitors to Wi-Fi chips. One such device is a connected vacuum cleaner, the Trifo Ironpie M6. According to researchers with Checkmarx, the vacuum has...
Top 10 IoT Disasters of 2019
IoT Disasters 2019 Though more light was shed around insecure Internet of Things IoT devices in 2019 – consequently leading to more calls for regulation– connected devices themselves seemingly stayed just as insecure. From privacy concerns in smart home devices, to botnets evolving to launch...
CVE-2019-15913
An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM, RTCGQ01LM devices. Because of insecure key transport in ZigBee communication, causing attackers to gain sensitive information and denial of service attack, take over smart home devices, and tamper with messages...
IoT-Home-Guard - A Tool For Malicious Behavior Detection In IoT Devices
IoT-Home-Guard is a project to help people discover malware in smart home devices. For users the project can help to detect compromised smart home devices. For security researchers it is also useful in network analysis and malicious hehaviors detection. In July 2018 we had completed the first...
Rooting a Logitech Harmony Hub: Improving Security in Today's IoT World
Introduction FireEye’s Mandiant Red Team recently discovered vulnerabilities present on the Logitech Harmony Hub Internet of Things IoT device that could potentially be exploited, resulting in root access to the device via SSH. The Harmony Hub is a home control system designed to connect to and...
Researchers Figure Out How to Blind ISPs from Smart Home Device Traffic
Researchers have come up with a way to blind ISPs and attackers in a man-in-the-middle position to network traffic emanating from smart home devices. Smart devices such as sleep monitors, electric switches, security cameras and many others require an internet connection to function properly. They...
Ninety percent of a Bank online system has security vulnerabilities-vulnerability warning-the black bar safety net
Smart home devices, routers, cell phones, street common vending machines...... Life time may contact to the smart devices are likely to encounter a hacker to crack, facing security issues. Yesterday, in the XCon security focus information security technology summit sponsored by the“XPwn future...