After 16 years, Ecobee is shutting down support for the original smart thermostat - eviltoast
  • jonne@infosec.pub
    link
    fedilink
    English
    arrow-up
    13
    arrow-down
    2
    ·
    7 months ago

    In the last 16 years there’s been multiple SSL vulnerabilities, so if someone was motivated enough, they could probably hack it, especially considering they’d have physical access. You could probably even dump out the filesystem and overwrite certificates with your own.

    • AggressivelyPassive@feddit.de
      link
      fedilink
      English
      arrow-up
      11
      ·
      7 months ago

      16 years ago was 2008 (which is shocking in itself, I’m old), SSL was seen as very very optional until 2013, when Snowden dropped his CIA/NSA leaks.

      I wouldn’t be surprised, is the security is “trust me, bro”.