A female-oriented sex toy emphatically called the “Panty Buster” — which has several advanced capabilities, like wireless connectivity — is riddled with vulnerabilities, according to a security consulting company’s findings published Thursday.
The Panty Buster “takes care of sensual moments day by day” by simultaneously triggering “a g-spot-punctual and vaginal simulation” and by letting users control the synced-app “from home or from the other end of the world,” according to Vibratissimo, the company offering the product.
But even not-so-tech-savvy people could likely have accessed a database of all customer information with ease, since usernames and passwords were available on the website for the sex toy company, said researchers for the firm SEC Consult. The log-in credentials for purchasers of the sexual products were reportedly featured in plain text on the site, and not very difficult to find, nor decipher.
Once a hacker — or even a sex toy enthusiast — realizes the trove of information, he could then rummage through, or perhaps intently analyze, explicit images, as well as home addresses and sexual preferences.
The owner of Vibratissimo has apparently adapted to SEC Consult’s investigation, but the cybersecurity still appears imperfect.
“The user has to send the device to Amor Gummiwaren GmbH to get the firmware updated as there are no ways to perform this remotely,” the information services firm wrote in a blog post. “Password protected pairing is already included in new devices but not enabled per default. From an IT Security point-of-view this feature should be an opt-out feature and not an opt-in feature.” (RELATED: Advanced Cybersecurity: The Simple Password May Soon Be Obsolete)
Vibratissimo’s app has more than 50,000 downloads on Google’s Android app store.
Send tips to email@example.com.
Freedom of Speech Isn’t Free
The Daily Caller News Foundation is working hard to balance out the biased American media. For as little as $3, you can help us. Make a one-time donation to support the quality, independent journalism of TheDCNF. We’re not dependent on commercial or political support and we do not accept any government funding.
Content created by The Daily Caller News Foundation is available without charge to any eligible news publisher that can provide a large audience. For licensing opportunities of our original content, please contact firstname.lastname@example.org.