Hi Guys,
I know this is an odd tip to send but I just read a story about a sex toy being remotely hacked into and I wanted to share with you as it is pretty terrifying. In this case ethical hackers were able to hack into a male chastity device and permanently lock it so that the only way to remove it was with with an angle grinder or by spiking the motor with 3 volts of electricity, while the device is still attached and locked (ok, stop laughing, this is not funny!)
Details of device:
Qiui Cellmate, a chastity device for men that can be unlocked or locked via an app and a Bluetooth connection. One person wears it and one person controls it over the internet.
Problem:
Ethical hackers from Pen Test Partners where able to easily hack into this toy and could to do the following:
- Remotely lock the device making it impossible to remove without putting the wearer at severe risk. (I am not saying anymore..)
- Access the private messages shared between the wearer and the ‘unlocker’ which as you can imagine would be very sensitive in nature.
- Ability to see the exact location of all users of the toy around the world in realtime and if they are locked or not.
How to Protect Yourself?
We all know that IoT devices are inherently insecure and this story confirms it. These devices are mostly made by companies who do not focus on security and often use a default username and password which makes them easily accessed by anyone at all with no hacking skills. Please be careful when buying IoT devices as they can open a massive window into your world and your data. Also, ask yourself do you really want to own an internet-connected sex toy?
Thanks and have a great day.
Max Roberts,
Incognito Privacy Care Team.