The report shows that the vulnerabilities affect Roku-powered Smart Tvs, TCL models, and Samsung devices. Consumer Reports investigators noted that a “a relatively unsophisticated hacker” can take over the devices, stream offensive content, change channels, or up the volume.
This could be done over the web, from thousands of miles away,
the Consumer Reports team added.
The bright side is that cyber criminals won’t be able to spy on you or get their hands on your personal information.
Smart TVs from Multiple Brands Collecting Info on Users
One more disturbing finding is that TCL, Samsung, and Roku smart TVs are collecting very detailed info on their viewers. The same vulnerability was reported for the smart TV sets from Sony, LG, and Vizio.
Last year, Vizio had to shell out $2.2 million because it failed to unveil what it was doing with the tracking information it accessed via its smart TVs. U.S. regulators also scrutinized LG and Samsung over similar reasons.
In addition, Consumer Reports found that the smart TVs from Amazon, Google, Apple, and Roku are less intrusive.
Samsung contacted the nonprofit organization and promised to update its API as soon as it can to fix vulnerabilities. Roku, on the other hand, dismissed the CR report as “wrong”. The Los Gatos, Calif-based company denied that its users may be facing any security risks.
Roku explained that its streaming platform is compatible with remote control apps created by third-party developers. But that doesn’t mean that the current API makes customers’ accounts or the platform less secure, Roku executive Gary Ellison wrote in a blog post. Ellison explained that customers can disable the External Control from the Roku Tv’s Settings menu.
Image Source: Vimeo