Well , this is fairly creepy . Did you bed there is aHello Barbiedoll that heed to what children say and responds to them with voice recognition via the Internet ? Well , there is – and areporthas encounter a security measures fault in the skirt that mean hack could have quite well gain access to the voice recordings .
fit in to research worker from security house Bluebox Labs and sovereign researcher Andrew Hay , it is potential that cyber-terrorist could wiretap code data that the plaything , made by Mattel and ToyTalk , sent to its host servers over Internet via Wi - Fi , such as children ’s recording . It should be noted that there were no factual reports of this pass – the research only outline this was a possibility .
“ As more and more stuff is plug into to the connection and we ’re sending more stuff to server that we do n’t know where they may be located and what sort of certificate is on them , the best advice for parent is to be careful and be aware of what information they ’re post through internet tie gadget , ” Andrew Blaich , a researcher at Bluebox Labs , toldMotherboard . “ Once the information is out of your control you do n’t know what ’s going to happen with it next . ”
The researchers published a reputation last hebdomad detailing the security measure fault in the toy dog . It allege that ToyTalk used superannuated encoding engineering science that was known to be vulnerable to a well - known onrush , know as aPOODLE attack . It involve downgrading the toy ’s software to make it approachable , permit any voice recorded on it to be listened to .
ToyTalk say they have now patched the problem . In a instruction toGizmodoit read : “ We have been working with Bluebox and apprize their Responsible Disclosure of issues with respect to Hello Barbie . We are grateful that they inform us of relevant security measure vulnerabilities , which have been addressed . ”
The report does serve to play up , though , that as more and more products use net connectivity – yes , the fear overuse term “ cyberspace of things ” – security measure needs to be take in earnest .
chief image credit : Mike Licht , NotionsCapital.com , CC BY 2.0
