https://twitter.com/lorenzofb/status/1348638602666905601?s=19

  • darkcalling [comrade/them, she/her]
    ·
    4 years ago

    How is an average person to know something is unsecured? Information security is something that people with years of training in technology related industries consistently fail at or get wrong. It's not like there's some sort of Underwriter's Laboratory for info-sec that you look for to check a product has been pen-tested and thoroughly evaluated. Even if you did, with a connected product the server infrastructure and software can change relatively easily so no guarantees it won't be broken even if effort is put forth.

    Technology is opaque. How many people who buy these things have the knowledge to fire up Kali and check for themselves? Clearly someone did and let people know but most people treat technology as a kind of magic, it's just expected to work, the how is as beyond them as the metallurgy that went into their car's engine.

    While I agree people should be discerning and careful in this space it doesn't mean they're to blame because they weren't given several courses on information security in school.

    • existentialspicerack [she/her,they/them]
      ·
      4 years ago

      generally speaking, all IOT should be assumed unsecured. unless you modded it, your IP sex toy is public. it's shit, but capitalism has held the market hostage and kept us from having good options in that space. and many others, of course.

      and they should be given information security as part of any valid education. I don't think you should be considered an adult without at least the 101.