acm-header
Sign In

Communications of the ACM

ACM TechNews

Samsung, LG Smartwatches Give ­p Personal Data to Researchers


View as: Print Mobile App Share:
The LG G Watch, powered by Google's Android Wear operating system, is not a locked-down repository for personal data.

Researchers at the University of New Haven's Cyber Forensics Research and Education Group have extracted personal data from two smartwatches.

Credit: Josh Miller/Cnet

Researchers at the University of New Haven's Cyber Forensics Research and Education Group (UNHCFREG) have shown they can extract personal information from two smartwatches because none of the data is encrypted.

From one watch, the researchers were able to retrieve email, calendar, contacts, and pedometer data. From the other watch, the researchers were able to retrieve health, email, messages, and contacts data.

The researchers noted the ease with which the smartwatches were hacked highlights the importance of data encryption. "It was not very difficult to get the data, but expertise and research was required," says UNHCFREG director Ibrahim Baggili.

The researchers will present a paper on their work at a digital forensics conference in August.

Last year, UNHCFREG researchers found that many smartphone communications apps were sending messages without using encryption. In addition, earlier this year the group released Datapp, a Windows program that enables people to check for unencrypted message data.

From CNet
View Full Article

 

Abstracts Copyright © 2015 Information Inc., Bethesda, Maryland, USA


 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account