Monday, May 23, 2022

‘Smart’ chastity device could be hacked

By AFP

Published: Published Date - 02:01 PM, Wed - 7 October 20

The locking mechanism is controlled with a smartphone app via Bluetooth, but security researchers have found multiple flaws that leave it vulnerable to hacking. The locking mechanism is controlled with a smartphone app via Bluetooth, but security researchers have found multiple flaws that leave it vulnerable to hacking.

Hong Kong: A security flaw in an internet-connected male chastity device could allow hackers to remotely lock it — leaving users trapped, researchers have warned.
The Cellmate, produced by Chinese firm Qiui does not have a physical key or manual override.

The locking mechanism is controlled with a smartphone app via Bluetooth, but security researchers have found multiple flaws that leave it vulnerable to hacking.”We discovered that remote attackers could prevent the Bluetooth lock from being opened, permanently locking the user in the device.

There is no physical unlock,” British security firm Pen Test Partners said Tuesday.
“An angle grinder or other suitable heavy tool would be required to cut the wearer free.” The firm also found other security flaws in the Cellmate — listed for $189 on Qiui’s website — that could expose sensitive user information such as names, phone numbers, birthdays and location data.

Qiui fixed most of the issues by updating the software, but left the older version active and its users still vulnerable, PTP added.