Google's in a spat with a hacker about the Home Hub's security

Someone thinks he's embarrassed the big G

Google's in a Home Hub security spat
The Ambient is reader-powered. If you click through using links on the site, we may earn an affiliate commission. Learn more

The security of our smart home devices and personal data is a big deal. That's why enterprising hackers and security experts are very interested in how secure the latest connected home tech really is.

Earlier this week Jerry Gamblin, who describes himself as a security advocate, problem solver and hacker, started tweeting out his findings after spending a couple of nights looking into the Google Home Hub smart display's security.

He tweeted: "I have spent the last two evenings looking at the security of the new Google Home Hub, and it is beyond dismal. It allows near full remote unauthenticated control by an (undocumented) API."

When he refers to "control" he means things like rebooting the device and controlling settings and notifications, not access to personal data captured by Google Assistant. Still, Gamblin was able to use pieces of the Home Hub's code to gain access to it, albeit on the same Wi-Fi network. No word on whether the same vulnerability affects the JBL Link View and Lenovo Smart Display.

Google isn't having it, though, as a spokesperson told CNET that: "A recent claim about security on Google Home Hub is inaccurate. The APIs mentioned in this claim are used by mobile apps to configure the device and are only accessible when those apps and the Google Home device are on the same Wi-Fi network. Despite what's been claimed, there is no evidence that user information is at risk."

Google also pointed out that user information is protected via authentication and encryption. But it seems that, once again, it's the security of the Wi-Fi network that's most important here. For what it's worth Gamblin's response to the Google response was to quote tweet: "OH THEY BIG MAD!!!!" We like this guy.

Concerned? Check out our tips on how to secure your router and our guide to smart home security.



Related stories

google Android 11 Google Home Power Menu going live later this year
smart home Wink Hub subscription plans delayed: 27 July launch date planned
smart home The best smart home devices: The top picks from our buying guides
amazon How to make Alexa talk faster (or slower)
security cameras Best home security camera 2020: Indoor and outdoor smart cam top picks
smart home Ring essential guide: The Ring smart security system in depth