Overview
Explore the security vulnerabilities of IoT connected speakers in this conference talk from the Hack In The Box Security Conference. Dive into the default configuration flaws, open diagnostic tool availability, and API vulnerabilities of popular wireless speaker systems like Sonos and Bose. Learn about the ease of physically locating these devices and identifying their users. Examine firmware and hardware intricacies to understand the nuances between IoT speaker devices and the broader IoT ecosystem. Discover why reported issues often remain unresolved and insecure, and gain insights on reducing the risks associated with these devices. While focusing on two specific IoT speaker systems, the talk highlights how these issues persist across various IoT devices, providing valuable knowledge for understanding and addressing IoT security challenges.
Syllabus
#HITB2018AMS CommSec D1 - Attacking IoT Speakers - Stephen Hilt
Taught by
Hack In The Box Security Conference