Hot tub maker Jacuzzi has been exposed to boiling water after cybersecurity researchers have discovered vulnerabilities in their apps that could expose user data and allow hackers to remotely control tabs. increase.
Jacuzzi’s “SmartTub” app, which allows users to control the temperature, lighting, and jets of hot tubs from their phones, is vulnerable to hackers, according to cybersecurity researchers publishing on the pseudonym EatonWorks. ..
Eaton writes that he was able to access personal information about Jacuzzi’s customers around the world, including contact information.
“User data from around the world, such as first name, last name, and email address, has been released,” Eaton wrote. Blog post.. “It’s easy to write a script that downloads all user information. It may have already been done.”
Eaton too Said to the vice Hackers can exploit this vulnerability to ruin bathtubs around the world.
“I think the worst thing you can do when it comes to remotely controlling the tub is to heat it up completely and change the filtration cycle,” Eaton said. “In the next few days you were able to drink a hot and stinky soup.”
Before publishing the findings, ethical hackers wrote that they contacted Jacuzzi, a login company that works with Auth0, to fix the vulnerability they flagged in June.
Eaton emphasized that it has not actually attempted to download user data or remotely change the settings of a stranger’s hot tub.
Jacuzzi did not immediately respond to a comment request from The Post.
Jacuzzi can be hacked into a “hot and stinky soup”
Source link Jacuzzi can be hacked into a “hot and stinky soup”