A directory traversal bug has been found in a Miele dishwasher. This allows access to arbitrary files on the dishwasher's Web server from unauthenticated users. It has been questioned whether appliance makers should be the ones connecting things to networks, since their lack of experience means there isn't even an official channel to report or fix security bugs. Miele are yet to comment.
(Score: 1) by mayo2y on Wednesday March 29 2017, @02:53PM
It may be useful for hardware manufacturer to receive diagnostic updates; they probably also find that aggregating usage data gives them important information.
I can see, as a homeowner, wanting to be able to access various devices remotely (locks, HVAC, lights, fridge, etc...)
As a privacy nerd I would want each device to speak directly to my approved network hub which then transmits approved information to the 3rd party in question. (As opposed to each company connecting on its own.)