AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
![]() ![]() “Nobody is trying,” said Sarah Zatko, the Chief Scientist at the Cyber Independent Testing Lab (CITL), a non-profit organization that conducts independent tests of software security. For example, an extensive study of thousands of device firmware images those companies and 16 other vendors by the Cyber Independent Test Lab found that the security of device firmware is terrible and has not improved in any measurable way over the last 15 years, even as attacks on connected devices like home routers have spiked. But there is little objective evidence that such statements are anything more than words. In September, Apple, also, announced a range of older iPhones and iPads that will not be able to work with its new iOS 13 release, rendering those devices, also, un-supportable.Įmbedded device makers like NetGear, ASUS and others make public protestations about their commitment to product security. Microsoft announced that e-books purchased on its online store would d isappear from their virtual bookcases in July, 2019 when it disabled a digital rights management (DRM) server used to manage the site. The move is just the latest in which manufacturers have announced they are abandoning products, or discontinuing support for them. Or, customers can “recycle” their legacy Sonos gear and receive a 30% discount on replacement gear. A scan of the Internet reveals thousands of Sonos devices including Sonos One and models of the Sonos:Play device that are publicly accessible.Īccording to the company, customers will have the option of simply continuing to use the products without support. For example, in 2017, researchers at the security firm Trend Micro reported that models of Sonos’s Play:1 and Sonos One speakers were vulnerable to remote attacks that could take control of the devices. Historically, software updates and patches have been part of the package. And the company has cultivated a reputation for solidly built and high-quality (if expensive) hardware. Sonos’ has sold millions of Internet connected speakers since its founding 17 years ago. Such issues can be addressed in software updates and patches – but not if that kind of support is discontinued. For example, last year millions of Imperial Dabman IoT radios were found to ship with weak passwords that could allow a remote attacker to achieve root access to the gadgets’ embedded Linux operating system. Often, IoT devices contain simple software configuration errors or coding problems that result in security holes. ![]() Since that time, Mirai variants have been linked to large denial of service attacks on banks and other targets, leveraging global populations of Internet connected and unpatched IoT endpoints. In that incident, more than 100,000 digital video recorders, webcams and other devices were compromised by a malicious program, then enlisted to launch crippling denial of service attacks against individuals and companies. Malware like the Mirai botnet demonstrated the risk posed by large populations of vulnerable or unpatched and connected devices. Both research and recent events indicate that un-patched and unsupported, Internet connected products are targets of opportunity for malicious actors. Feeling abused,” wrote the Twitter user in a post that captured the sentiments of many customers.īut Sonos users have more to worry about than Spotify playlists cut short. ![]() Now I’ll be warning everyone to buy anything but. “I’ve been showing off my Sonos system to everyone who visits. “Without new software updates, access to services and overall functionality of your sound system will eventually be disrupted, particularly as partners evolve their technology,” the company said.Ĭustomers turned to social media to express their anger over the decision. The products were released between 20, with some sold as recently as 2015. That includes security patches needed to address exploitable holes in software that runs the home audio devices. ![]() In a blog post this week, Sonos announced that its original Zone Players, Connect, and Connect:Amp, first-generation Play:5, CR200, and Bridge products will no longer receive software updates or new features. Now they want to cripple my WHOLE Sonos ecosystem and obsolete the rest of my devices!ĭo they really think a few years later I will now buy a whole new £3000+ system from them again?Ībsolutely NOT! Never again! #boycottSonos /wX7DCd0fsX- Mats B. ![]()
0 Comments
Read More
Leave a Reply. |