Russian woman hacked automatic feeders for animals
"Tell that to the cats and dogs that are now eating at home from this thing and are waiting for their owners from a two-week vacation, ”she said.
Anna Prosvetova, an IT specialist, discovered a vulnerability in smart animal feeders from the Xiaomi crowdfunding platform and gained access to all such feeders in the world. She wrote about this in her telegram channel about technology. We are talking about the Furrytail Pet Smart Feeder feeder, which itself feeds the animals according to the schedule set by the owner through the application. Prosvetova discovered a vulnerability to hacking when she studied the application API.
Anna said that she could “feed a couple of clicks” of all cats and dogs and vice versa deprive them of food.
“In theory, you can force these feeders to upgrade to a dummy firmware, after which the device will die, and the only way to fix it will be complete analysis, soldering to the controller pins and manually filling in the firmware. Tell that to the cats and dogs that are now eating at home from this thing and are waiting for their owners from a two-week vacation, ”she said.
She noted that the ESP8266 microcontroller in the feeder allows you to install a dummy firmware on all devices and kill them, or organize a DDOS botnet. Prosvetova has already notified the manufacturer of the vulnerability found