​Fitbit tracker hacked in 10 seconds

23 Oct 2015 | Author: | No comments yet »

Barclays to Shrink Staff in a New Way: 75,000 Fitness Trackers.

Fitness-tracking wristband Fitbit, which has sold more than 20 million devices worldwide, and tracks your calorie count, heart rate and other highly personal information, can be remotely hacked, according to research by Fortinet.The gadgets pair up with staff’s smartphones to monitor physical activity like the number of steps taken each day, and try to persuade workers to increase the amount they exercise.

The firm plans to roll out a new wellness program Nov. 2 that includes subsidizing Fitbit Inc. activity trackers for more than 75,000 U.S. and U.K. employees in its investment bank, personal and corporate bank, card operations and other support functions, according to a statement Tuesday. It’s joining companies including Target Corp., Time Warner Inc. and BP Plc in partnering with the maker of wearable devices for tracking health data. “Activity challenges across our business units and between teams will be an important part of our strategy to encourage more activity and fun in the workplace,” Dominic Johnson, London-based Barclays’s director of employee relations and head of well-being, said in the statement provided by Fitbit.

Although the the Fitbits, which typically cost between £50 and £80, can be used individually, the bank also wants to encourage staff to challenge each other to fitness contests. According to the Register, Fortinet researchers have claimed that the quick attack can deliver malware over Bluetooth in a few seconds, which can give the hacker remote access to the computer your Fitbit connects to. The move is part of a wider lifestyle crackdown – in August Barclays’ new executive chairman John McFarlane banned staff from wearing flip flops in its Canary Wharf head office.

Fortinet analyst Axelle Apvrille was quoted saying, “An attacker sends an infected packet to a fitness tracker nearby at Bluetooth distance then the rest of the attack occurs by itself, without any special need for the attacker being near.” When you upload your Fitbit data or sync to change your profile on any computing device, the malware can be passed through to your machine, without your knowledge. “From there, it can deliver a specific malicious payload on the laptop, that is, start a backdoor, or have the machine crash [and] can propagate the infection to other trackers (Fitbits),” Mr Apvrille told Vulture South. Some staff at Barclaycard had adopted a tech firm approach to office fashion alongside its more free-thinking style of innovating in the business, but that dress code is no longer welcome in the sky scraper where the top executives and investment bankers work. While corporate services generate less than 10 percent of Fitbit’s revenue, it’s “one of the fastest-growing parts of the business,” Chief Executive Officer James Park said in a September interview. The company is expanding its corporate customer base, announcing 20 new customers in the third quarter including GoDaddy.com and BMC Software, who will chip in for tens of thousands of staffers to buy Fitbit devices as part of new wellness programmes. The same researcher said he had discovered and reported this loophole to Fitbit in March, as the first instance of a fitness wearable being hackable – but he claimed Fitbit hasn’t responded.

The really frustrating thing about this exploit is the fact that Fitbit’s known about the vulnerability since March when the Fortinet researchers contacted them, but the company still hasn’t fixed it. In 2011 technology blogger Andy Baio tweeted that wearable fitness band Fitbit users’ sexual activity was showing up in Google search results by accident.

Here you can write a commentary on the recording "​Fitbit tracker hacked in 10 seconds".

* Required fields
Our partners
Follow us
Contact us
Our contacts


ICQ: 423360519

About this site