• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Industry News   »   Are your smart TVs watching you?

Are your smart TVs watching you?

  • Posted on:March 23, 2016
  • Posted in:Industry News
  • Posted by:
    Noah Gamer
0
Smart TVs may pose security risks for users.

The days of referring to the television as the "idiot box" are coming to an abrupt end. In fact, the more popular nomenclature for the near ubiquitous viewing devices is "smart TV." For those who have yet to make the transition, a smart TV is a television or a set-top box that has Internet connection. This allows the viewer to browse the Web, download a vast array of applications and more.

A variety of smart TV's are currently on the market, including products from Apple, Samsung, Vizio, Sony, Philips and Panasonic, just to name a few. But before rushing to the nearest electronic store or ordering a shiny new tube online, there are a few things that users should be aware of in order to be a smart, smart TV owner. 

Cyber threat assessment

As a rule of thumb, once any device is connected to the Internet, it becomes vulnerable to cyber attacks. Smart TVs are no exception. In a recent blog post, Trend Micro analyzed some of the current cyber threats impacting smart TVs. Specifically, Android-based devices are at risk from applications downloaded from unauthorized sources. A user may be tricked into installing a bad app in any number of ways. It could be as a result of a phishing scam, or in response to promises of free applications that would normally come with a price tag. But once lured onto one of several sites offering the illegitimate application, the real trouble begins.

Trend Micro notes that some of these apps are malicious software that create a backdoor onto the system. This allows a hacker to install other software that could potentially be used for any number of purposes. For instance, they may be able to access the user's personal information, including credit card data linked to legitimate applications installed on the device. They could access any photos, videos or documents that are stored on the smart TV. They could steal login information for social networking websites, or email accounts, both of which could be used for further theft of information. Granted, these are all worst-case scenarios, but they are very real cyber threats. 

Privacy problems

Known smart TV exploits are hardly the only concern for the contemporary TV watcher. Several reports have revealed recently that some of the most popular smart TVs might actually be watching the user. One example occurred in 2015 when The Daily Beast contributor Shane Harris in 2015 called out the fine print in Samsung smart TVs privacy policy:

"Please be aware that if your spoken words include personal or other sensitive information, that information will be among the data captured and transmitted to a third party."

In other words, Samsung may be recording your conversations and sharing it with a third party. The company responded, assuring that all data was secure and encrypted, adding that users could turn off the voice commands and disable Wi-Fi if they so choose – of course, than it wouldn't really be a smart TV anymore. Similarly, Vizio smart TV models are preset to track user activity, which is then sold to marketers. In theory, someone, somewhere knows exactly what you've been up to on your smart TV.

Last but not least, accounts on smart TVs – like most other forms of smart home technology – are chiefly guarded by passwords. This means that if a user doesn't change default credentials, have weak passwords or their login information is somehow stolen, accounts associated with the device are also in jeopardy. TVs that have cameras in particular pose a scary surveillance threat. Hypothetically, cyber attackers could control this camera remotely if they somehow got access to the TV, which means they could quite literally spy on users. 

A few simple steps can improve security 

This is not to steer buyers away from smart TVs, but rather to make them responsible users of these devices. For one thing – and this goes for all devices – strong passwords that utilize numbers and special characters can help secure smart TVs. When shopping for applications, always download and install from a trusted app store or website. So many seemingly legitimate apps are malware in disguise, and third-party stores are much more likely to be selling this software. It's also important that users are aware of default privacy settings, so at the very least, they are aware that their conversations may be recorded at any given time.

In summary, being a responsible, aware smart TV owner can help you avoid privacy violations and potential data theft.

Related posts:

  1. Ransomware makes its debut on the small screen: FLocker infects smart TVs
  2. Was Your Smart Phone on the Leaked FBI List?
  3. 2016: The Year of the Fatal “Smart” Failure?
  4. Part 2: Is your security smart enough?

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • New Report: Top Three Ways to Drive Boardroom Engagement around Cybersecurity Strategy
  • Advanced Cloud-Native Container Security Added to Trend Micro's Cloud One Services Platform
  • Trend Micro Goes Global to Find Entrepreneurs Set to Unlock the Smart Connected World
  • Winners of Trend Micro Global Capture the Flag Demonstrate Excellence in Cybersecurity
  • Companies Leveraging AWS Well-Architected Reviews Now Benefit from Security Innovations from Trend Micro
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.