1 comment

[ 2.4 ms ] story [ 18.8 ms ] thread
Werner Schober held a great talk about this for 35C3:

https://www.youtube.com/watch?v=xzR4eEp0w3Y

It starts out as a story about a funny thesis idea, but slowly grows into a horrifying litany of basic security mistakes, including "private" photos being vulnerable to insecure direct object references and devices accepting unauthenticated Bluetooth packets