Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Hacking Nest Thermostat

Hacking Nest Thermostat


Help Net Security - (International) TrapX Labs researchers proved vulnerability in the Nest Learning Thermostat that was first presented at the Black Hat 2014 conference by compromising the devise within TrapX's Advanced Test Bed Facility, then providing real-world validation by compromising a device that was installed in a participant's home network. The researchers were able to use the device as an initial point of attack to gain access to the entire home network, allowing them to tracker users' Internet activity, access private credentials, and use the thermostat's data to determine whether or not anyone was at the home.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:23:39