Half Of the Major Internet-Connected Security Systems Are Vulnerable To Jamming
from the not-so-smart-home dept
As usual, the “smart” home isn’t always all that smart, and dumber technology can often be the best option. That’s certainly true in the smart lock realm, where studies repeatedly have shown that many major smart lock brands are easily compromised. The same has reportedly been proven to be of most other “smart” devices, whether it’s smart refrigerators, smart televisions, or even smart Barbies.
You’d think “smart” systems with a focus on security would be better, but not really. Consumer Reports recently took a look at the top ten modern home security systems, and found that half of them could be relatively easily compromised by hackers. Most modern security systems are DIY systems that include a centralized hub, then various door, window, and other sensors you can buy piecemeal. But Consumer Reports found that five major brands could be relatively easily jammed so that the alarm never goes off when an intruder enters your home:
“In a series of new tests, Consumer Reports found that five popular DIY home security systems are relatively easy to jam. That means a burglar can use a laptop and a portable radio frequency (RF) transceiver to block the signals from door/window or motion sensors and enter a home without triggering the alarm. It?s worth noting that any wireless device can be jammed, but there are methods and technologies that make it harder to pull off.”
Of course a hacking-capable intruder needs to know what kind of alarm system they’re trying to jam, which is why it’s a good idea to not advertise the type of alarm system you have via those handy yard stakes or signs (which some people use in substitute for a real alarm system anyway). While such signs can be deterrents, they also advertise which vulnerabilities an intruder should be targeting.
The systems Consumer Reports said were relatively easy to jam were the Abode Iota All-In-One Kit, Cove Home Security System, Eufy 5-Piece Home Alarm Kit, Ring Alarm Security Kit (2nd gen.), and SimpliSafe The Essentials SS3-01. Two of those systems, Cove and Eufy, were also found to be vulnerable to replay disarm signal attacks, where an attacker captures and records the disarm signal from a key fob and later broadcasts it to disarm the security system. Not all of these vulnerabilities are fatal; some detect the jamming, they just do so too late. Others can have sensors jammed, but still record intruders.
That said, when Consumer Reports reached out to the five companies to see if they’d be fixing the jamming issue, only one said they would. And most downplayed the threat as not particularly likely in the real world:
“In order to jam a device, one would have to perfectly execute a highly nuanced protocol with devices specifically tuned and configured for this purpose,? says Gomes-Casseres. ?And even if successful, thanks to SimpliSafe?s built-in detection, customers are alerted, and cameras are queued to record and capture evidence, during jamming attempts.”
Still, it’s yet another example that dumb tech (like say, getting a dog and a dead bolt) still can be a more reliable supplement, if not outright alternative.
Filed Under: smart homes, vulnlerabilities
Companies: consumer reports