RC RANDOM CHAOS

IoT security

6 posts

Flock's real attack surface was never the camera
Article

Flock's real attack surface was never the camera

Flock ALPR cameras are a national sensor grid - the security risk isn't recording, it's a queryable movement database reachable by thousands of weak accounts.

Mirai's hardcoded logins still answer on 554
Article

Mirai's hardcoded logins still answer on 554

Open webcams indexed by Shodan and Censys are not a privacy footnote - they map insecure OEM firmware, exposed services, and supply chain risk.

The device is the inventory
Article

The device is the inventory

Smart TV apps embed residential proxy SDKs that turn devices into exit nodes. The trust failure lives in the build pipeline, not the hardware.

Motorola signed its own kill switch
Article

Motorola signed its own kill switch

Motorola's silent firmware push bricked its WiFi router line. The mechanism is identical to AcidRain. Here is what failed and why it repeats.

Baby monitors exposed one million streams
Article

Baby monitors exposed one million streams

One million baby monitors and cameras were viewable by unauthorised parties. What it reveals about IoT enforcement and the owner-side blindness behind it.

?auth=YWRtaW46MTEK and a million open cameras
Article

?auth=YWRtaW46MTEK and a million open cameras

Technical breakdown of the auth bypass, P2P relay, and default-credential failures that exposed over a million IP cameras and baby monitors.