8/7/2013

Internet-connected smart TVs may be vulnerable to attacks from malicious JavaScript code, according to Aaron Grattafiori and Josh Yavor of iSEC Partners. At last week's Black Hat conference, the researchers demonstrated how the code can do everything from accessing a user's data to turning webcams on for surveillance. "Because the TV only has a single user, any type of compromise into an application or into Smart Hub, which is the operating system -- the smarts of the TV -- has the same permission as every user, which is, you can do everything and anything," Grattafiori said.

Related Summaries