Samsung’s Smart TV hacking secrets to be sold to government agencies

December 12, 2012
32 45 6

ReVuln Samsung SmartTV hackA security company known as ReVuln has created a video demonstrating that it can hack and root Samsung’s Smart TV range including the¬†Samsung TV LED 3D. The video shows how a zero-day vulnerability in the TV’s firmware can be used to retrieve sensitive information and monitor the device remotely. However ReVuln aren’t disclosing this¬†information¬†to Samsung, instead the company prefers to sell its secrets to¬†governments and “other paying customers.”

A zero-day¬†vulnerability is a bug in the firmware which, when exploited, allows hackers to root and remotely control the device. It is known as a “zero-day” as this is the number of days that the¬†manufacturer¬†knew about the vulnerability before it was exposed. In other words this is a¬†previously¬†unknown¬†vulnerability.

The¬†exploit allows an¬†attacker¬†to install malicious software and switch on the integrated webcam and microphone for¬†surveillance¬†purposes. The attacker can also access any¬†attached¬†USB drives. ReVuln plan to¬†invest more time and effort in hacking smart home devices and chose Samsung for their first attack¬†because it’s the current market leader. However, for ReVuln, televisions are just the beginning.

ReVuln doesn’t release its hacking secrets, even if Samsung contacted them¬†directly. Instead the¬†company sees the vulnerability¬†information¬†as part of a security portfolio for its paying customers. In this context paying customers includes government agencies. According to its website, “the vulnerabilities included in our Zero-day feed remain undisclosed by ReVuln unless either the vulnerability is discovered and reported by a third party or the vendor publicly or privately patches the issue.”

What do you think? Are you worried about someone hacking into your smart TV? Do you think ReVuln should at least tell Samsung how it did it?

Comments

  • Claudio

    Yeah sure i have all my sensitive info attached to my smart tv, jaja

    pathetic company

    • http://twitter.com/TheBlackHand2 The Black Hand

      It’s not so much about sensitive info as much as someone could watch you via the webcam. Pretty pathetic huh?

  • SK

    I don’t see how this is a problem, they’re accessing the TV directly on their LAN… no one directly has their TV on the internet it is going to be behind a router/firewall… even just behind NAT w/o the firewall active is enough

  • Rath Mam

    Lawsuits by Samsung will shutdown ReVuln.

  • AngelesMEC

    I prefer that the people behind this should be hunted down one by one and get killed.

  • Expert

    I don’t know how this to call.. Maybe another “scam story”?? Ridiculous, it doesn’t work that way boys and girls – it is so many factors behind scenes that nearly impossible to hack tv, especially if tv connected even to cheapest router. Everybody claiming – oh I can hack this, I can hack internet and etc. but in real world – it is very difficult, without direct access to computer, tv, tablet, phone or server – it is nearly impossible to hack. I know this from my practice – as this is my part of daily routine. So stop publishing such an idiotic articles and fooling peoples please. And bay the way – even if somebody will hack it – what is the point??? Main rule – don’t install sh***t on your device and you will be safe for ages, second rule – don’t click untrusted links, third rule – don’t browse porn, scam websites and you will be safe.