IoT security: Serious vulnerabilities found in Samsung SmartThings Hub

Cisco’s cybersecurity arm Cisco Talos has discovered a number of vulnerabilities in the firmware of Samsung’s SmartThings Hub. The device is designed to be controlled using a smartphone app, giving the owner oversight of all connected devices in the home, meaning that any security flaw could have serious consequences. Cisco Talos’ Claudio Bozzato found that the SmartThings Hub was severely compromised. Bozzato discovered firmware vulnerabilities that made it possible for an attacker to take control of the Hub and, by extension, access sensitive information, monitor and control devices within the home, and perform other unauthorised activities – with potentially devastating consequences.