Einar  Hintz

Einar Hintz

1594638720

Smartwatch Hack Could Trick Dementia Patients into Overdosing

Attackers could hack the smartwatch and send dementia patients alerts for taking their medication.

Researchers are warning vulnerabilities in a smartwatch application for dementia patients could allow an attacker to convince patients to overdose.

The vulnerabilities stem from the SETracker application, which is developed by Chinese developer 3G Electronics (based out of Shenzhen City). The app, which is available on iOS and Android and has been downloaded over 10 million times, is used to power various third-party smartwatch devices. These smartwatches are utilized by elderly patients with dementia who need reminders for taking their medication and to carry out everyday tasks. The apps are also used by parents to track their children – expanding the impact of the security issues.

“Is this yet another cheap Chinese kids GPS watch story? No, this is much more than just kids watches. The SETracker platform supports, automotive trackers, including both car and motorcycle, often embedded in audio head units and dementia trackers for your elderly relatives,” said Vangelis Stykas, with Pen Test Partners, in a Thursday post. “The vulnerabilities discovered could allow control over ALL of these devices.”

Researchers discovered an unrestricted server-to-server application programming interface (API) behind the app that allowed them to carry out a number of malicious activities. Specifically, the API had no authentication required to send commands, other than the requirement of a semi-random string that was already hardcoded to the code. That means a remote, unauthenticated attacker could send commands freely as if they were on a “trusted” server, said researchers.

“This was trivial to discover, all we had to do was just read through the compiled javascript code in the node file to understand what the API was doing,” said Stykas. “With no API restrictions and knowing the API structure we could take over all the devices.”

This issue allows an attacker – who knows the device ID of the smartwatch – to make a device call for any phone number or send SMS with any text from the watch, spy on any smartwatch, or fake a message from a “parent” to the smartwatch or access its camera. Worse, an attacker could send a “TAKEPILLS” command to the smartwatch that uses the app, to remind a relative to take medication (even if the target already took his pills).

#hacks #iot #3g electronics #credentials #exposed password #hack #hacking #internet of things #mobile app #setracker #smartwatch

What is GEEK

Buddha Community

Smartwatch Hack Could Trick Dementia Patients into Overdosing
Einar  Hintz

Einar Hintz

1594638720

Smartwatch Hack Could Trick Dementia Patients into Overdosing

Attackers could hack the smartwatch and send dementia patients alerts for taking their medication.

Researchers are warning vulnerabilities in a smartwatch application for dementia patients could allow an attacker to convince patients to overdose.

The vulnerabilities stem from the SETracker application, which is developed by Chinese developer 3G Electronics (based out of Shenzhen City). The app, which is available on iOS and Android and has been downloaded over 10 million times, is used to power various third-party smartwatch devices. These smartwatches are utilized by elderly patients with dementia who need reminders for taking their medication and to carry out everyday tasks. The apps are also used by parents to track their children – expanding the impact of the security issues.

“Is this yet another cheap Chinese kids GPS watch story? No, this is much more than just kids watches. The SETracker platform supports, automotive trackers, including both car and motorcycle, often embedded in audio head units and dementia trackers for your elderly relatives,” said Vangelis Stykas, with Pen Test Partners, in a Thursday post. “The vulnerabilities discovered could allow control over ALL of these devices.”

Researchers discovered an unrestricted server-to-server application programming interface (API) behind the app that allowed them to carry out a number of malicious activities. Specifically, the API had no authentication required to send commands, other than the requirement of a semi-random string that was already hardcoded to the code. That means a remote, unauthenticated attacker could send commands freely as if they were on a “trusted” server, said researchers.

“This was trivial to discover, all we had to do was just read through the compiled javascript code in the node file to understand what the API was doing,” said Stykas. “With no API restrictions and knowing the API structure we could take over all the devices.”

This issue allows an attacker – who knows the device ID of the smartwatch – to make a device call for any phone number or send SMS with any text from the watch, spy on any smartwatch, or fake a message from a “parent” to the smartwatch or access its camera. Worse, an attacker could send a “TAKEPILLS” command to the smartwatch that uses the app, to remind a relative to take medication (even if the target already took his pills).

#hacks #iot #3g electronics #credentials #exposed password #hack #hacking #internet of things #mobile app #setracker #smartwatch

Tech Hub

Tech Hub

1628430590

How to find WiFi Passwords using Python 2021|Hack WiFi Passwords|Python Script to find WiFi Password

Hack Wifi Passwords easily..

https://youtu.be/7MwTqm_-9Us

 

#wifi #python #passwords #wifipasswords #linux #coding #programming #hacking #hack

#wifi #hack #using #python #python #hacking

Future of Remote Patient Monitoring Services

With the growth of remote patient monitoring systems, healthcare software providers have been able to give easier solutions to patients and access to healthcare services has also grown. It is expected that the healthcare industry will see a huge rise in the use of remote patient monitoring services in the coming five years. The need to integrate remote patient monitoring software systems into a patients chronic disease management treatment can improve the quality of a patient’s life. Click on the link for more Information.

#remote patient monitoring integration #remote patient monitoring vendors #remote patient monitoring providers #best patient monitoring systems #best remote patient monitoring companies

Remote Patient Monitoring Software Development Services - SISGAIN

SISGAIN’s Remote Patient monitoring solution entry and remote applications have changed healthcare observing with a more straightforward, safer and versatile stage. Our best patients monitoring system in Michigan, USA is easy to use and can be custom-made to accommodate your training patient notifications, patient updates, and reports are largely adaptable. Our related patient stage and application, permits your patients and their guardians to follow their own information, expanding their consistency while improving results. Our easy to use Remote patients monitoring programs coordinate flawlessly with telehealth gadgets. For more information call us at +18444455767 or email us at hello@sisgain.com

#remote patient monitoring solutions #best patient monitoring systems #remote patient monitoring integration, #remote patient monitoring program #remote patient monitoring vendors

Remote Patient Monitoring Systems: Components, Types, Vendors & Implementation Process

In the coming years, we will see a huge increase in remote patient monitoring devices. This growth will be because of the growing old population, the effects of the covid-19 pandemic and the cost of medical care in hospital facilities. Medical care providers have already started using more ways of remote patient monitoring than before. These best remote monitoring systems free up beds, these systems also allow doctors to track their patient’s vital signs, and check their symptoms for coronavirus. Remote patient monitoring practices are gaining more support in the healthcare sector. Remote patient monitoring integration in different hospital systems has increased the use of non-invasive devices for home use. Remote patient monitoring solutions are here to stay, even after the coronavirus pandemic is gone. In this blog, we will explain how remote patient monitoring systems work, and about their different components. We will also look at the available options in the tech market and what to do before starting a remote patient monitoring program. To read more click on the link.

#remote patient monitoring integration #remote patient monitoring vendors #remote patient monitoring providers #best patient monitoring systems #remote patient monitoring program #software development