+44 (0)203 88 020 88

Menu

Search

Cyber Security News & Articles

 

Cyber Security
News & Articles

Trusted Cyber Security Experts
25+ Years Industry Experience
Ethical, Professional & Pragmatic

Chromecast design flaw exposes digital signage screens to takeover

chromecast vulnerability upnp

A recent publicity stunt promoting YouTube scoundrel pewdiepie has brought attention to a design flaw in Google Chromecast devices and smartTVs that embed the Chromecast technology.  By default, the Chromecast device will attempt to use Universal Plug and Play if it is enabled on the network router in order to open a port on the router’s firewall and map ports TCP:8008, 8443 & 8009 directly to the Chromecast.  This means anyone who knows the public IP address of the router can send commands to the Chromecast and cause it to display arbitrary video files.  Devices that are open the Internet are easily discovered using search engines such as www.shodan.io which indexes Internet devices rather than web pages.

In the case of the publicity stunt, the Chromecast devices unexpectedly played a 20 minute pewdiepie video on over 65,000 devices.  However, more nefarious attackers could use this ability to play video files that are designed to manipulate the people who see them to take action which facilitates a more damaging attack on your company infrastructure.  Social Engineering plays an increasingly important role in successful cyber-attacks and this Chromecast vulnerability provides an unexpected avenue for criminals to message and manipulate your staff.

Chromecast devices have been adopted as cheap and cheerful digital signage controllers in many offices and are used to mirror PC screens displaying anything from building announcements through to the state of the current software build progress or live server metrics for DevOps teams.

While many enterprise grade routers will have Universal Plug and Play disabled, it is possible that tertiary networks established to support IoT and digital signage devices and keep them off the main corporate network may use cheaper SoHo grade devices which could have UPnP available by default. Network administrators are advised to check if UPnP is enabled on their network and disable it if possible.

 

 

Subscribe to our monthly newsletter today

If you’d like to stay up-to-date with the latest cyber security news and articles from our technical team, you can sign up to our monthly newsletter. 

We hate spam as much as you do, so we promise not to bombard you with emails. We’ll send you a single, curated email each month that contains all of our cyber security news and articles for that month.

Why Choose SecureTeam?

Customer Testimonials

“We were very impressed with the service, I will say, the vulnerability found was one our previous organisation had not picked up, which does make you wonder if anything else was missed.”

Aim Ltd Chief Technology Officer (CTO)

"Within a very tight timescale, SecureTeam managed to deliver a highly professional service efficiently. The team helped the process with regular updates and escalation where necessary. Would highly recommend"

IoT Solutions Group Limited Chief Technology Officer (CTO) & Founder

“First class service as ever. We learn something new each year! Thank you to all your team.”

Royal Haskoning DHV Service Delivery Manager

“We’ve worked with SecureTeam for a few years to conduct our testing. The team make it easy to deal with them; they are attentive and explain detailed reports in a jargon-free way that allows the less technical people to understand. I wouldn’t work with anyone else for our cyber security.”

Capital Asset Management Head of Operations

“SecureTeam provided Derbyshire's Education Data Hub with an approachable and professional service to ensure our schools were able to successfully certify for Cyber Essentials. The team provided a smooth end-to-end service and were always on hand to offer advice when necessary.”

Derbyshire County Council Team Manager Education Data Hub

“A very efficient, professional, and friendly delivery of our testing and the results. You delivered exactly what we asked for in the timeframe we needed it, while maintaining quality and integrity. A great job, done well.”

AMX Solutions IT Project Officer

“We were very pleased with the work and report provided. It was easy to translate the provided details into some actionable tasks on our end so that was great. We always appreciate the ongoing support.”

Innovez Ltd Support Officer

Get in touch today

If you’d like to see how SecureTeam can take your cybersecurity posture to the next level, we’d love to hear from you, learn about your requirements and then send you a free quotation for our services.

Our customers love our fast-turnaround, “no-nonsense” quotations – not to mention that we hate high-pressure sales tactics as much as you do.

We know that every organisation is unique, so our detailed scoping process ensures that we provide you with an accurate quotation for our services, which we trust you’ll find highly competitive.

Get in touch with us today and a member of our team will be in touch to provide you with a quotation. 

0

No products in the basket.

No products in the basket.