Find a Question:
Google Glass: manipulated by QR Code
Glass is well known, the ambitious Google Goggles project of Google, which is currently in a limited beta phase. These devices of course invite people to try what is so and what does not. And this security researchers went a security hole in the net, but which was now already closed.
Researchers from Lookout have found that Google Glass automatically executes commands hidden in an image captured by the camera. This would make it possible, for example, to order a coffee, photographed by a user menu. However, this feature also increases the potential for abuse when the HMD the user does not ask for permission to perform certain actions and not inform him.
“For us it was not about showing that Glass is wrong. There is a limited beta product, to find fault with the hackers and geeks before it hits the market in a big way, “says Marc Rogers, a security researcher at Lookout and the discoverer of the vulnerability. “From the perspective of a security company, it is ideal for tinkering. Our aim was rather to demonstrate that networked devices require the same level of security as software on smart phones or PCs. ”
With the vulnerability found, the data prepared glasses with a picture or a QR code on a t-shirt or a poster made hack. Thus, the security researcher Glass could secretly connect to another Bluetooth device or WiFi their choice. Thus, not only the display of the HMD without the knowledge of their carrier was streaming to other devices. With the help of a well known web vulnerability of Android even rooting the device and allow the complete control of data glasses from a distance was possible.
The Lookout security researchers have Google in accordance with the industry code of “responsible disclosure” on 16 May; through the vulnerability. Google has fixed the vulnerability quickly and with the automatic update XE6 on 4 June to all Google users Glass distributed. Google is following the recommendation, only to start the execution of QR codes when the user actively triggers this.
So we look forward to various security solutions provider, if refrigerator, car and Co are networked soon. Antivirus for the car virtually. I bet it comes as 😉Viewing:-116
Answer this Question
You must be Logged In to post an Answer.
Not a member yet? Sign Up Now »
Star Points Scale
Earn points for Asking and Answering Questions!