05.17.2023
Older Wemo smart plugs from Belkin have a vulnerability that allows them to be hacked, according to a blog post from security researchers at Sternum. The Wemo Mini Smart Plug
Basically, the Wemo Mini Smart Plug V2 has a 30 character name limit that can be overwritten, leading to an exploitable memory buffer error. Full details on how the exploit works are available from Sternum.
Belkin told Sternum that it has no plans to update the Wemo Mini Smart Plug V2 because it is at the end of its life after four years and has been replaced with newer models. That leaves many potential Belkin customers vulnerable, as there are likely many of these smart plugs being used in the wild.
Sternum recommends that people prevent the Wemo Mini Smart Plug V2 from accessing the internet and communicating with other devices like the iPhone because of the vulnerability, but the safest bet would be to remove the plugs and replace them with something more secure.
This article, "PSA: Older Wemo Smart Plugs Have Vulnerability That Leaves Them Open to Attack" first appeared on MacRumors.com
Discuss this article in our forums
You may also be interested in this
Habbo Launches Classic Ve…
06.18.2024
If you were a kid who grew up using the internet in the early 2000s, there is a good chance that you heard of Habbo Hotel. Once a massively popular
Will the Vision Pro heads…
06.08.2023
Apple is hoping its new Apple Vision Pro headset will shepherd in the era of "spatial computing," but apparently the company's aspirations might include replacing TVs, too.Apple TV+ series "Foundation"
iPhone 16e criticized for…
03.04.2025
Macworld Apple’s new iPhone 16e received a provisional 7/10 repairability rating and a broadly positive write-up in iFixit’s video teardown Monday. But one element came in for stern criticism: the
Indices end slightly down…
05.12.2023
U.S. stock indices ended lower on Friday, led by weaker big technology-related shares following their recent rally, as data showed U.S. consumer sentiment dropped to a six-month low. Caroline Valetkevitch
WWDC 2023 Guide: Keynote …
05.23.2023
Macworld Of the big Apple events of the year, WWDC is the most reliable: In each of the past 16 Junes, like clockwork, Apple has held a big get-together for
How Apple Vision Pro Work…
06.06.2023
Apple Vision Pro is a standalone hardware device that has its own processors and does not require a connection to a Mac or an iPhone to operate, but it is
The iPad Pro’s battery li…
05.04.2023
Macworld When I bought my first iPad at the Apple Store on Regent Street, when it hadn’t yet been released in my home country of Sweden, it seemed an almost
Timekettle Fluentalk T1 T…
05.19.2023
The Timekettle Fluentalk T1 Translator Device is a well-built language translator that allows you to convert foreign text by verbalizing or photographing it — but you own an alternative already.Timekettle
