Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Samsung smart TVs can be crippled remotely


  • Please log in to reply
7 replies to this topic

#1 Guest_Xircal_*

Guest_Xircal_*

  • Guests
  • OFFLINE
  •  

Posted 25 April 2012 - 09:09 AM

All Samsung 'Smart TVs' like the 46" D6000 Smart 3D LED TV can be crippled remotely simply by being connected to an Ethernet or wireless connection on TCP port 55000.

When a controller packet is received, it will tell the user that a new remote device has been found which he can enable by clicking Accept or Deny. Clicking either will cause the TV to go into an endless restart loop after five seconds. Intervention by a Samsung technician will be required to regain control.

Samsung Blu-Ray devices are also affected apparently. More details on the story here: http://aluigi.altervista.org/adv/samsux_1-adv.txt

BC AdBot (Login to Remove)

 


#2 Union_Thug

Union_Thug

    Bleeps with the fishes...


  • Members
  • 2,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:is everything

Posted 25 April 2012 - 05:02 PM

Good f'n grief, what's next? DDOS on your GE refrigirator? Chevy Impala & Buick Lacrosse botnets? AV/FW security suites for my toaster oven?

http://arstechnica.com/business/news/2012/04/tv-based-botnets-ddos-attacks-on-your-fridge-more-plausible-than-you-think.ars



The TV was connected by ethernet cable to a home network, so Auriemma thought it would be funny to use a computer connected to the same network to send it a message that contained a series of custom headers. Without warning, the TV spiraled into an endless loop of restarts. For about five seconds, the device would appear to work correctly, but then would stop responding to commands entered by remote control or through the panel. A few seconds later, the TV would restart and repeat the process. Unplugging the power cord or ethernet cable did nothing. Auriemma had just stumbled upon a crippling denial-of-service attack.

snip

"You cannot change the volume, channels or access any function," he wrote in his description of the attack. "After 35 seconds the TV stop(s) working and back. This happens 3 times. At fourth time, the TV shuts down. In less than 3 minutes, the TV is off remotely. It is necessary to turn on the TV physically.






Edited by Union_Thug, 25 April 2012 - 05:07 PM.


#3 lti

lti

  • Members
  • 581 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 25 April 2012 - 07:37 PM

Samsung Blu-Ray devices are also affected apparently. More details on the story here: hxxp://aluigi.altervista.org/adv/samsux_1-adv.txt

Norton won't let me open that link.
http://safeweb.norton.com/report/show?url=aluigi.altervista.org

Edited by lti, 25 April 2012 - 07:39 PM.


#4 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 34,743 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:09:16 AM

Posted 25 April 2012 - 10:17 PM

It's only a text page and I checked it http://linkscanner.explabs.com/linkscanner/AVG/checksite.aspx?NS=ChkOnly&SRC=apps.explabs.com&CS=http://aluigi.altervista.org/adv/samsux_1-adv.txt

With all my security it came up just fine. IMHO it's a Norton False Positive.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+

#5 Union_Thug

Union_Thug

    Bleeps with the fishes...


  • Members
  • 2,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:is everything
  • Local time:08:16 AM

Posted 25 April 2012 - 11:04 PM

This thread explains it: http://aluigi.freeforums.org/antiviruses-hall-of-shame-t273.html

Luigi Auriemma is the researcher who discovered the recently patched critical vulnerability in Microsoft's Remote Desktop Protocol (RDP)

#6 Guest_Xircal_*

Guest_Xircal_*

  • Guests
  • OFFLINE
  •  

Posted 26 April 2012 - 03:45 AM

Norton won't let me open that link.

I think Symantec has become a little paranoid after the source code of one of their older AVs was hacked and posted on the web: Source code of Symantec Antivirus posted on the net

If you use Firefox, install this add-on: VTZilla You can use it to scan a link before you opening it among other things.

EDIT: above post had appeared twice. Deleted one of them.

Edited by Xircal, 26 April 2012 - 03:52 AM.


#7 Nawtheasta

Nawtheasta

  • Members
  • 398 posts
  • OFFLINE
  •  
  • Location:New England, USA
  • Local time:11:16 AM

Posted 26 April 2012 - 12:06 PM

As we move further from devices with "burned" operating instructions to those with " updateable" software these problems will become more prevalent.
Maybe in an odd way it's a good thing. When TV's become married to the internet and people start getting fake AV malware offers on their TV's possibly a new approach will be developed that will thwart attacks on PC's and other devices.

#8 ranget

ranget

  • Members
  • 250 posts
  • OFFLINE
  •  
  • Gender:Male

Posted 13 June 2012 - 01:08 PM

that's what we are missing connecting our devices to the internet so it can be hacked
how stupid is that

people need to understand that the internet is not safe

and we don't need to connect everything to the internet

A big thanks to Dider Stevens

sorry for not being around

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users