A security flaw in an Internet-connected male chastity device could allow hackers to remotely lock it — leaving users trapped, researchers have said.
The Cellmate, produced by Chinese firm Qiui, is a cover that clamps on the base of the male genitals with a hardened steel ring, and does not have a physical key or manual override.
The locking mechanism is controlled with a smartphone app via Bluetooth — marketed as both an anti-cheating and a submission sex play device — but security researchers have found multiple flaws that leave it vulnerable to hacking.
“We discovered that remote attackers could prevent the Bluetooth lock from being opened, permanently locking the user in the device. There is no physical unlock,” British security firm Pen Test Partners (PTP) said on Tuesday. “An angle grinder or other suitable heavy tool would be required to cut the wearer free.”
The firm also found other security flaws in the Cellmate — listed for US$189 on Qiui’s Web site — that could expose sensitive user information such as names, telephone numbers, birthdays and location data.
“It wouldn’t take an attacker more than a couple of days to exfiltrate the entire user database and use it for blackmail or phishing,” PTP’s Alex Lomas wrote in the report on the device.
“A number of countries have oppressive laws that may expose users of these types of devices to unwarranted interest from law enforcement and bigots,” Lomas wrote.
Qiui did not immediately respond to a request for comment.
PTP said it reached out to Qiui in April, identifying the flaws.
Qiui fixed most of the issues by updating the software, but left the older version active and its users still vulnerable, PTP said, adding that other researchers had found similar issues.
Such smart sex toys and devices are among the wave of new “Internet of things” products and appliances introduced in the past few years that are online and capable of being operated remotely.
Their connectivity has also made them vulnerable to security breaches and privacy violations.
The Canadian maker of a smart vibrator agreed to a multimillion-dollar settlement in 2017 after it was sued for collecting sensitive user information, though it did not admit any wrongdoing.
NO EXCUSES: Marcos said his administration was acting on voters’ demands, but an academic said the move was emotionally motivated after a poor midterm showing Philippine President Ferdinand Marcos Jr yesterday sought the resignation of all his Cabinet secretaries, in a move seen as an attempt to reset the political agenda and assert his authority over the second half of his single six-year term. The order came after the president’s allies failed to win a majority of Senate seats contested in the 12 polls on Monday last week, leaving Marcos facing a divided political and legislative landscape that could thwart his attempts to have an ally succeed him in 2028. “He’s talking to the people, trying to salvage whatever political capital he has left. I think it’s
Polish presidential candidates offered different visions of Poland and its relations with Ukraine in a televised debate ahead of next week’s run-off, which remains on a knife-edge. During a head-to-head debate lasting two hours, centrist Warsaw Mayor Rafal Trzaskowski, from Polish Prime Minister Donald Tusk’s governing pro-European coalition, faced the Eurosceptic historian Karol Nawrocki, backed by the right-wing populist Law and Justice party (PiS). The two candidates, who qualified for the second round after coming in the top two places in the first vote on Sunday last week, clashed over Poland’s relations with Ukraine, EU policy and the track records of their
UNSCHEDULED VISIT: ‘It’s a very bulky new neighbor, but it will soon go away,’ said Johan Helberg of the 135m container ship that run aground near his house A man in Norway awoke early on Thursday to discover a huge container ship had run aground a stone’s throw from his fjord-side house — and he had slept through the commotion. For an as-yet unknown reason, the 135m NCL Salten sailed up onto shore just meters from Johan Helberg’s house in a fjord near Trondheim in central Norway. Helberg only discovered the unexpected visitor when a panicked neighbor who had rung his doorbell repeatedly to no avail gave up and called him on the phone. “The doorbell rang at a time of day when I don’t like to open,” Helberg told television
A team of doctors and vets in Pakistan has developed a novel treatment for a pair of elephants with tuberculosis (TB) that involves feeding them at least 400 pills a day. The jumbo effort at the Karachi Safari Park involves administering the tablets — the same as those used to treat TB in humans — hidden inside food ranging from apples and bananas, to Pakistani sweets. The amount of medication is adjusted to account for the weight of the 4,000kg elephants. However, it has taken Madhubala and Malika several weeks to settle into the treatment after spitting out the first few doses they