Jesus Christ, now baby monitors can be hacked, too?

Sep 3, 2015 14:08 GMT  ·  By

Baby monitors that have an Internet connection are as vulnerable to hacking attempts as cars, fridges, gas pumps or any other IoT smart device is, a Rapid7 research confirms.

While there was a case two years ago when an anonymous European hacker connected to a baby monitor in Texas and started shouting obscenities at a little baby, other notable cases have not been observed in the meantime.

This is probably why there's little to gain from hacking into baby monitors, except watching a little kid play or sleep, or listen in on conversations between his parents.

Since there's no monetary gain, hacking groups tend to prioritize other issues. The same thing cannot be said for security researchers, which have a tendency of pushing new products to their limits, and especially the new IoT line of smart devices.

Concentrating their efforts on this type of devices, Rapid7 security researchers found ten critical vulnerabilities in seven baby monitors.

Your baby sleeping in his bed, backdoors, XSS flaws and privilege escalation

These range from hard-coded backdoor credentials to stored and reflected cross-site scripting (XSS) issues.

Three of the baby monitors, iBaby M6, Philips In.Sight B120/37, and the Summer Baby Zoom Wifi Monitor & Internet Viewing System, allowed hackers to intercept live video feeds from the baby monitor's webcam.

When contacted via email by Rapid7 employees, only Philips provided assistance in fixing their problem.

More concerning was that one of the baby monitor manufacturers did not have a website where it could be contacted, and its only online presence was an Amazon store.  

CVE ID Attack Point Rapid7 Vulnerability ID Vulnerability Type Baby Monitor
The 10 vulnerabilities found by Rapid7 researchers
CVE-2015-2886 Local Net, Device R7-2015-11.1 Backdoor Credentials iBaby M6
CVE-2015-2887 Local Net, Device R7-2015-11.2 Backdoor Credentials iBaby M3S
CVE-2015-2882 Remote R7-2015-12.1 Reflective, Stored XSS Philips In.Sight B120/37
CVE-2015-2883 Remote R7-2015-12.2 Direct Browsing Philips In.Sight B120/37
CVE-2015-2884 Remote R7-2015-12.3 Authentication Bypass Philips In.Sight B120/37
CVE-2015-2888 Remote R7-2015-13.1 Privilege Escalation Summer Baby Zoom Wifi Monitor & Internet Viewing System
CVE-2015-2889 Remote R7-2015-13.2 Privilege Escalation Summer Baby Zoom Wifi Monitor & Internet Viewing System
CVE-2015-2885 Local Net, Device R7-2015-14 Backdoor Credentials Lens Peek-a-View
CVE-2015-2881 Local Net R7-2015-15 Backdoor Credentials Gynoii
CVE-2015-2880 Device R7-2015-16 Backdoor Credentials TRENDnet WiFi Baby Cam TV-IP743SIC