Not only can your favorite series be streamed on smart TVs at any time, sensitive data can also be stolen. One brand is currently in particular focus.
Kassel – It is probably common knowledge that computers and cell phones offer attack surfaces for uninvited guests. But very few users probably know that criminals can also gain access to their privacy via their living room. There is also a significant risk of unauthorized access to internet-enabled televisions – known as smart TVs. Experts give tips on how users can protect themselves, their devices and sensitive data from hackers.
Security gaps discovered – thousands of LG smart TVs are affected
There is a general risk of being hacked via the television. But several vulnerabilities have recently been discovered, particularly in devices from the technology giant LG. As the trade press, including
Computer Bild,
unanimously reported, the cybersecurity company Bitdefender found problems with several versions of the WebOS operating system based on LG. This could give hackers complete access to the device and thus also to sensitive user data.
Devices can be completely paralyzed by so-called “Denial of Service” attacks (DoS). In the worst case, streaming services such as Netflix, Prime Video or Disney + provide criminals with sensitive information about account details or private information if the access is hacked. According to the report, WebOS versions 4 to 7 and the following Smart TV models from LG are affected:
LG43UM7000PLA with WebOS 4.9.7 – 5.30.40
OLED55CXPUA with WebOS 5.5.0 – 04.50.51
OLED48C1PUB with WebOS 6.3.3-442 (kisscurl-kinglake) – 03.36.50
OLED55A23LA with WebOS 7.3.1-43 (mullet-mebin) – 03.33.85
Source: golem.de
The model name can be found on a label on the back of the television and in its setting.
Experts recommend: Check regularly for the latest updates for smart TVs
Bitdefender security experts informed LG about the security gaps as early as 2023. The company responded with new updates. These have been available since March 22, 2024 and the security standards in the operating systems have been adjusted - provided that the latest updates from March 2024 have been installed.
LG Smart TV users should therefore check whether their devices are up to date and update if necessary. Unlike computers or smartphones, these are optional on Smart TVs and are not always installed automatically. Users can move them and still watch TV without restrictions.
If automatic software updates are not enabled, they can be installed manually by selecting Software Update under Customer Support in Settings. There you will find the “Check for updates” option; Depending on the operating system, the process may vary slightly. LG provides instructions on its website.
Minimize security risks when using smart TVs: Here's how
What applies to computers and smartphones also applies to smart TVs: regular updates are needed for comprehensive data security. The news portal
heise.de
also advises users of smart TVs to take the following approach to further protect the device and user data:
Switch off webcams and microphones:
Some smart TVs offer webcams or voice control, which can often be used for third-party access. Hackers can abuse the eavesdropping or monitoring functions.
Switch off HbbTV:
Hybrid broadcast broadband TV is considered the successor to teletext and can usually be switched on and off using a red button.
Use the Smart TV browser as rarely as possible:
A Smart TV brings the network with all functions into the living room. You can both surf and stream. However, web browsers should be avoided if possible, as they are updated less frequently than on computers or smartphones.
Avoid entering confidential data:
If you do use the browser, you should only enter passwords or private data if there is an encrypted connection (URL begins with
“https://”).
Only install apps from trustworthy sources:
This primarily includes the Play and App stores from Android and Apple.
In the recent past, Internet routers have also been attacked by hackers and millions of private data were at risk due to a security vulnerability in the online use of ID cards. But you should also be careful in your personal dealings - and be particularly skeptical of supposed employees of the German pension insurance company. (rku)