Baby monitors that have an Internet connection are as vulnerable to hacking attempts as cars, fridges, gas pumps or any other IoT smart device is, a Rapid7 research confirms.
While there was a case two years ago when an anonymous European hacker connected to a baby monitor in Texas and started shouting obscenities at a little baby, other notable cases have not been observed in the meantime.
This is probably why there's little to gain from hacking into baby monitors, except watching a little kid play or sleep, or listen in on conversations between his parents.
Since there's no monetary gain, hacking groups tend to prioritize other issues. The same thing cannot be said for security researchers, which have a tendency of pushing new products to their limits, and especially the new IoT line of smart devices.
Concentrating their efforts on this type of devices, Rapid7 security researchers found ten critical vulnerabilities in seven baby monitors.
Your baby sleeping in his bed, backdoors, XSS flaws and privilege escalation
These range from hard-coded backdoor credentials to stored and reflected cross-site scripting (XSS) issues.
Three of the baby monitors, iBaby M6, Philips In.Sight B120/37, and the Summer Baby Zoom Wifi Monitor & Internet Viewing System, allowed hackers to intercept live video feeds from the baby monitor's webcam.
When contacted via email by Rapid7 employees, only Philips provided assistance in fixing their problem.
More concerning was that one of the baby monitor manufacturers did not have a website where it could be contacted, and its only online presence was an Amazon store.
CVE ID | Attack Point | Rapid7 Vulnerability ID | Vulnerability Type | Baby Monitor |
---|---|---|---|---|
CVE-2015-2886 | Local Net, Device | R7-2015-11.1 | Backdoor Credentials | iBaby M6 |
CVE-2015-2887 | Local Net, Device | R7-2015-11.2 | Backdoor Credentials | iBaby M3S |
CVE-2015-2882 | Remote | R7-2015-12.1 | Reflective, Stored XSS | Philips In.Sight B120/37 |
CVE-2015-2883 | Remote | R7-2015-12.2 | Direct Browsing | Philips In.Sight B120/37 |
CVE-2015-2884 | Remote | R7-2015-12.3 | Authentication Bypass | Philips In.Sight B120/37 |
CVE-2015-2888 | Remote | R7-2015-13.1 | Privilege Escalation | Summer Baby Zoom Wifi Monitor & Internet Viewing System |
CVE-2015-2889 | Remote | R7-2015-13.2 | Privilege Escalation | Summer Baby Zoom Wifi Monitor & Internet Viewing System |
CVE-2015-2885 | Local Net, Device | R7-2015-14 | Backdoor Credentials | Lens Peek-a-View |
CVE-2015-2881 | Local Net | R7-2015-15 | Backdoor Credentials | Gynoii |
CVE-2015-2880 | Device | R7-2015-16 | Backdoor Credentials | TRENDnet WiFi Baby Cam TV-IP743SIC |