Skip to main content
  1. Home
  2. Smart Home
  3. News

Thousands of Belkin WeMo devices may be vulnerable to hackers: UPDATED

By
thousands belkin wemo devices may vulnerable hackers
Image used with permission by copyright holder

UPDATE: Belkin has now released a fix for the security issues mentioned below. To remedy the issue, Belkin urges WeMo users to download the latest app from the App Store (version 1.4.1) or Google Play Store (version 1.1.2) and then upgrade the firmware version through the app. Find more information here

According to a recently-released study from security research firm IOActive, nearly half a million Belkin WeMo devices may be vulnerable to attackers.

Recommended Videos

In a number of different experiments, the WeMo line – which includes things like remotely-controlled switches, plugs, and motion sensors for home automation – was shown to have a variety of different security flaws that give hackers the ability to:

  • Remotely control WeMo devices over the Internet
  • Perform malicious firmware updates
  • Remotely monitor devices
  • Access an internal home network

Obviously, this is bad news for Belkin, but it’s even worse news for anyone who currently has a WeMo device in their house. If these vulnerabilities are legitimate, it means that once attackers have compromised a device, they’re free to remotely turn WeMo-connected appliances on or off at will. Depending on the gear users have connected to their WeMos, this could lead to something as harmless as some wasted electricity, or as dangerous as a house fire. On top of that, WeMo motion sensors could be used to remotely monitor a house. This could make a home an easy target for tech-savvy burglars who can use a compromised WeMo to determine when people are in that house, and when they aren’t.

Additionally, once an attacker has established a connection to a WeMo device within a victim’s network, the compromised device can be used as a foothold to attack other devices on your home network – including things like laptops, mobile phones, network-attached storage, or home automation devices. 

Mike Davis, IOActive’s principal research scientist, had this to say about the findings: 

“As we connect our homes to the Internet, it is increasingly important for Internet-of-Things device vendors to ensure that reasonable security methodologies are adopted early in product development cycles. This mitigates their customer’s exposure and reduces risk.”

We couldn’t agree more.

IOActive has reached out to Belkin for comments on the issue, but has yet to receive a response. For the time being, we recommend that you unplug any WeMo devices you may own and check back for updates.

We’ll keep you posted should any security patches be released.

[via Help Net Security]

Topics
Drew Prindle
Drew Prindle
Former Digital Trends Contributor
Drew Prindle is an award-winning writer, editor, and storyteller who currently serves as Senior Features Editor for Digital…
From Ninja to Cuisinart: The 5 best Keurig alternatives in 2024
A Keurig K-Supreme coffee maker sits on a kitchen counter next to K-Cups and glass of iced coffee.

There’s nothing better than a hot cup of coffee in the morning. Unfortunately, not all of us have the time to brew a fresh pot before we hit the road. That’s where small appliances like the Keurig come in handy though. Designed to whip up a great-tasting mug of warm delight in just a few minutes, it’s hard to beat the convenience delivered by the popular brand. But Keurig isn’t the only name in town.

If you’ve got a lot of mugs to fill in the morning, or you think you could score a better deal by going with a non-Keurig model, we’re on your side! Here’s five Keurig alternatives for 2024 you can buy right now.

Read more
The 5 best office chairs for long hours in 2024
The Verve in an office.

When you spend half (or more) of your day in an office chair, a $50 budget-buy store brand isn’t the kind of purchase you should be making. Not only are these cheap items more likely to break down over time, but there’s a good chance this kind of chair isn’t going to have the elevated support features your body needs. That’s why we’ve put together this list of the five best office chairs for long hours in 2024.

Each of these models are tailor-made for those of us who need a comfortable chair that feels good all day. We’ve also made sure to include a couple of options for folks who experience back pain, shoulder strain, and other sore conditions.

Read more
Matter gains support for kitchen appliances, adds new energy-tracking features
The Matter logo on a colorful background.

Matter received its big 1.2 update in late 2023, and now the Connectivity Standards Alliance (CSA) is ready to officially roll out Matter 1.3. The latest version of the interoperability standard is now available for use, offering added support for appliances like microwave ovens and lclothes dryers, while also introducing new features for water and energy management.

The full list of new device types supported by Matter 1.3 include microwave ovens, ovens, cooktops, extractor hoods (such as vent hoods), and laundry dryers. These aren't quite as exciting or mainstream as the nine device types introduced with Matter 1.2, but it's great to see the CSA continuing to broaden the reach of the Matter network.

Read more