The more "smart" devices appear in the house, the more often cyber-security specialists write about ways of breaking through a thermostat or camera. One of these days to this set of ways the unusual way of breaking of clever TV was added also: through an ethereal signal.
The cyber-security consultant Rafael Shil, who tested this exploit for Oneconsult, described the principle of its use in Ars Technica's commentary. The work of this method he demonstrated on two Samsung TVs with software, updated to the latest version: during the demonstration, he managed to get root access to both TV.
The researcher managed to integrate malicious code into a digital (DVB-T) broadcast using a cheap transmitter. This method gives you the opportunity to get remote access to all TVs that will receive a hacked signal. To get root access, this code uses vulnerabilities in the browser that is on the TV.
According to him, the prospects for this vulnerability are frightening: through hacked TV hackers can get to other connected devices or spy on users through a camera or a TV microphone. The good news is that the DVB-T format is not so common in the world.
The methods of hacking, the code used and the demonstration of hacking are in the Oneconsult presentation:
Let's remind, earlier we published an article of the founder of Berezha Security company Vlad Styran about how the user does not become a cyber-victim.