[QUOTE=a1call;497083]The problem is changing the WiFi password will still require inputting the new password to the app if I want to keep using the plugs.[/QUOTE]What makes you think that changing the password will help? If they got in the first time, they'll get in again.

[QUOTE=retina;497086]What makes you think that changing the password will help? If they got in the first time, they'll get in again.[/QUOTE]

That's my point. There is no solution. Being an open book to hackers is the cost of being connected.

Not many will choose to get off the grid.

[QUOTE=a1call;497087]That's my point. There is no solution. Being an open book to hackers is the cost of being connected.[/QUOTE]It doesn't have to be that way.[QUOTE=a1call;497087]Not many will choose to get off the grid.[/QUOTE]You don't have to connect everything. You also don't have to disconnect everything. Find a balance. Just connect the things that matter. I'm fairly convinced that "smart" plugs, and the like, are not things that matter.

I think you are not as secure as you think you are. Just because you have js disabled and are not aware of any intrusions, it does not mean that there has not been any.
This has been discussed in the past. All it takes for any web browsing computer to be totally hijacked is a single click on a malicious link (may be not even that). Research single-click from ultraVNC which is a legit signed software used by IT professionals. Having one's OS UP-TO-DATE or not is irrelevant. So is having an antivirus or a firewall.

ETA Only the retarded minority among hackers announce their intrusions.

[QUOTE=a1call;497091]I think you are not as secure as you think you are.[/QUOTE]I've never announced how secure I think I am so I wonder how you could make a judgement? :confused:[QUOTE=a1call;497091]Just because you have js disabled and are not aware of any intrusions, it does not mean that there has not been any.[/QUOTE]Yes, you are correct. But I expect I am [i]a lot[/i] more secure by taking the simple step of not having JS than others who allow it.[QUOTE=a1call;497091]This has been discussed in the past. All it takes for any web browsing computer to be totally hijacked is a single click on a malicious link (may be not even that). Research single-click from ultraVNC which is a legit signed software used by IT professionals. Having one's OS UP-TO-DATE or not is irrelevant. So is having an antivirus or a firewall.[/QUOTE]Targeted and high quality attacks are certainly possible. Traffic logs and IDS systems help a lot to expose such things. They require vigilance to monitor but catch a lot of suspicious activity.[QUOTE=a1call;497091]ETA Only the retarded minority among hackers announce their intrusions.[/QUOTE]Without JS, browser hijacks are a lot harder to achieve. Why give attackers an easy target just so we can watch grumpy cats all day?

[QUOTE=a1call;497083]The other day I bought some smart plugs from a very large common store. Set them up using the iPhone app which entailed inputting my wifi password.
The very next day my wifi was hacked via MITM Attack.
I doubt it very much that it is a coincidence.
The problem is changing the WiFi password will still require inputting the new password to the app if I want to keep using the plugs.[/QUOTE]

What was the manufacturer of the smart plugs, if I may ask?

[QUOTE=richs;497160]What was the manufacturer of the smart plugs, if I may ask?[/QUOTE]
To keep it off the related SERPS:
CE SM.AR.T purchased from Cos.tc.o
Very likely the hack is done without the knowledge of the manufacturer by exploiting their network vulnerabilities.

[QUOTE=a1call;497161]To keep it off the related SERPS:
CE SM.AR.T purchased from Cos.tc.o
Very likely the hack is done without the knowledge of the manufacturer by exploiting their network vulnerabilities.[/QUOTE]

Thank you.

[QUOTE=retina;496798]Software as a service ... nothing could ever go wrong with that. Right? Those big companies will always be around, forever, without a single second of downtime, ever. Or at least not down for more than a few minutes. Right?

[URL]https://www.theregister.co.uk/2018/09/24/zoho_domain_snafu/[/URL] :ermm:[/QUOTE]
And internet connectivity never fails. Except for that time last month when the folks running fiber through my neighborhood to connect one further out, cut more than 1/4 of the local telco cable, of course including the pairs to my house that carried DSL, and the repair technician was available a week later.

[QUOTE=kriesel;497252]And internet connectivity never fails. Except for that time last month when the folks running fiber through my neighborhood to connect one further out, cut more than 1/4 of the local telco cable, of course including the pairs to my house that carried DSL, and the repair technician was available a week later.[/QUOTE]

As a consumer, you are supposed to now rely on wireless connectivity, with all of the risks and costs.

Really! You still do DSL over copper for connectivity? That's like SO last decade....

[QUOTE=kriesel;497252]And internet connectivity never fails. Except for that time last month when the folks running fiber through my neighborhood to connect one further out, cut more than 1/4 of the local telco cable, of course including the pairs to my house that carried DSL, and the repair technician was available a week later.[/QUOTE]And also no one will ever be in an airplane with their laptop trying to use the SaaS system to do their work.