Can your smartwatch get hacked? Study shows what information is at risk
Smartwatches might be good for tracking steps and heartrates, but they can also offer hackers a wealth of personal information to exploit, according to a new Charles Darwin University (CDU) study.
Researchers in the study hacked into a variety of smart wearable devices, valued between $25 and $150, to understand the vulnerabilities of this technology and what information can be accessed and exploited.
These devices allow people to track their health, monitor their fitness, conduct medical tests and more but often use Bluetooth Low Energy (BLE) technology, which sacrifices security for low energy consumption.
Study supervisor Dr Bharanidharan Shanmugam, who is a Lecturer in Information Technology at CDU’s Faculty of Science and Technology, said researchers were able to connect to the devices and gain access to data and had the ability to manipulate it.
“We could bring a pulse down or up, we could see where a person has gone, where they’ve spent time and other medical readings like heartbeat, Blood Pressure and ECG readings” Dr Shanmugam said.
“This data can be pushed to medical companies, used for targeted marketing, or can be used to develop a profile on a user.”
Dr Shanmugam said given the rising popularity of smart wearable BLE devices, manufacturers needed to make it a priority to implement robust security mechanisms.
“The assertion that smartwatch makers are not taking security seriously is a significant concern,” Dr Shanmugam said.
“If this trend persists, it could lead to a cascade of negative consequences for both individuals and society. Potential consequences are increased identify theft and financial loss, as any breach could expose personally identifiable information to cybercriminals leading to identity theft, financial fraud and unauthorised access.
“There’s health data violation. If the data fall into wrong hands, it could be used for blackmail or even physical harm especially for elders, and there’s corporate espionage. Compromised devices can allow competitors or cybercriminals to steal valuable intellectual property. A massive volume of lawsuits stemming from these incidents could potentially bankrupt the company.”
The study was conducted with Christ Academy Institute for Advanced Studies in Bengaluru, India.
Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices was published by the Institute of Electrical and Electronics Engineers.
Related Articles
Where rubber meets the road: Old tyres are key to building tougher roads
Almost half of the Northern Territory’s worn-out tyres end up in landfills – with the rest exported interstate for recycling – but a study led by Charles Darwin University (CDU) is repurposing the discarded rubber to build stronger, sustainable roads that meet the NT’s unique needs.
Read more about Where rubber meets the road: Old tyres are key to building tougher roads
Social media subjecting Black women to radicalised digital policing
Influencers use oppression, manipulation and weaponisation to police Black women on social media, according to new research uncovering the entrenched nature of digital racism.
Read more about Social media subjecting Black women to radicalised digital policing
Moo-ving the boundaries: New research evaluates virtual fences for use on NT cattle stations
Cattle producers in Northern Australia face unique challenges when adapting tools like virtual fences on their properties, but new research from Charles Darwin University (CDU) is set to break down the barriers to this technology.
Read more about Moo-ving the boundaries: New research evaluates virtual fences for use on NT cattle stations
