Kaspersky Lab researchers disclosed at Mobile World Congress 2019 in Spain that bionic hand prostheses from Moscow-based Motorica are vulnerable to hacking.
These prostheses can be equipped with a range of smart features, like in-built displays, a near-field communication (NFC) chip for contactless payments, a GSM module, activity tracking, and smartwatch tasks.
Those functions require cloud access, which could potentially open such devices to attacks.
The Kaspersky researchers said the "experimental" remote cloud system for controlling one Motorica prosthesis contained diverse zero-day vulnerabilities, which could "enable a third party to access, manipulate, steal, or delete the private data of device users."
Reported bugs included an insecure HTTP link, incorrect account operations, and insufficient input validation, which hackers could leverage to target the moment the prosthesis sends data to the cloud.
View Full Article
Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA
No entries found