From bankinfosecurity.com
Nearly 2 million internet of things devices, including security cameras, baby monitors and “smart” doorbells, are vulnerable to being compromised due to a flaw in their built-in peer-to-peer software, a security researcher warns.
Paul Marrapese, an independent security researcher from San Jose, California, has published research warning that peer-to-peer software developed by Chinese firm Shenzhen Yunni Technology that’s used in millions of IoT devices around the world has a vulnerability that could allow an attacker to eavesdrop on conversations or press household items into service as nodes in a botnet.