Hacker News new | ask | show | jobs
by ce4 542 days ago
There's another thing not mentioned. From the payload it looks like one may be able to spoof other customers' sensors by altering the serial (maybe it's a contiguous number) and replay the request. Heck, it is just one "curl -X PUT -d ..." command away, the info is all in the article
1 comments
api 542 days ago
The S in IoT stands for security.
link