Skip to main content

Own an Aga oven? Hackers can turn it on and off, security experts say

aga oven hackers screen shot 2017 04 13 at 5 07 17 pm
Image used with permission by copyright holder
Even if you always remember to turn your oven off before you leave the house, it may not stay that way. That is, if you own an Aga oven, a smart appliance that can be controlled by a smartphone app. In the latest security vulnerability to be found in the Internet of Things, security researchers at Pen Test Partners discovered that hackers could gain control of your oven, turning it on and off at will.

Security expert Ken Munro was considering upgrading his own oven range to a connected version from Aga when he discovered the issue. The ovens, which have been around since 2012, apparently can be remotely accessed, and then turned off and on without their owners’ knowledge. “I wanted to know more about its security before spending extra on this option,” Munro told The Telegraph. “We found that even Agas can be hacked. Seriously.”

So what is the issue? Apparently, it all lies in the app. While most connected devices communicate with one another and their companion apps by way of the internet, Aga instead sends text messages directly to the ovens (there is a SIM card embedded in the appliances). That means that when you want to turn your oven on, you literally text it.

While this may sound cool, it is not all that secure, Munro found. In fact, the Telegraph reported that the system “can easily be hijacked, letting hackers send messages to Agas not belonging to them in order to turn them on or off.” Because Aga neither encrypts or verifies the communications between its app and its ovens, it would be relatively easy (Munro did it) to discover sent messages. These messages could then be mimicked by someone with “nefarious intentions.” Given that the “Total Control” Aga ovens will set you back around $12,500, this certainly seems like a problem that absolutely should not be happening.

Munro claims that he attempted to tell Aga of the problem, but that the company has not responded to his requests, and even blocked him on Twitter. “Come on Aga, sort it out. This isn’t acceptable,” he said. But the company told the Telegraph it is taking a closer look at its systems. “We take such issues seriously and have raised them immediately with our service providers so that we can answer in detail the points raised,” a company spokesperson said.

So if you’re an Aga owner, be careful. You never know who is controlling your oven.

Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Security camera maker Kami dives into 24/7 home security monitoring
kami dives into 247 professional monitoring home security

The home security industry continues to evolve thanks to the implementation of new technologies. Today, Kami Vision announced a partnership with Cove to launch a brand-new entry in the smart home security field: 24/7 Professional Monitoring Powered by Cove. This is a new type of DIY security with a full-suite camera that combines professional monitoring with A.I.-enhanced security.

Setup is designed to be simple. All you have to do is install the device, a process that takes only a few minutes -- there's no need for professional installation or hardwiring. This makes it possible for anyone, even people with next to no DIY skills, to install a security system in their home.

Read more
No need to estimate: Nanit’s smart sheet precisely measures your baby’s height
nanits smart sheet will measure your childs height overhead hero pro sheets

Have you ever tried to measure a child? In particular, a wriggling, active, uncooperative infant? It's a bit like herding cats -- all but impossible. Thanks to new smart technology from Nanit, you can let your baby's sheets do the work for you. Nanit's no stranger in this space having released a baby monitor previously.

The new Nanit Pro, combined with the matching Smart Sheets, keeps track of your baby's height as they grow over time. You can take this information and present it to your pediatrician to help ensure your child is growing properly and meeting all of their health thresholds.

Read more
Most promising blood pressure monitoring tech in years isn’t out in the U.S. yet
aktiia blood pressure monitor automatically tracks your bp

Heart disease is one of the most prevalent and deadliest conditions in the world, especially because it can so often go undiagnosed. Many people walk around with severe complications that make them a ticking time bomb. Today, Aktiia announced the availability of the first-ever 24/7 automated blood pressure monitor -- something we got a first look at during CES 2020. Users wear the device and it gathers information about their blood pressure and other health metrics all throughout the day and night.

The device doesn't work like traditional blood pressure monitors. Rather than squeezing your arm each time it needs a measurement, the Aktiia Optical Blood Pressure Monitor monitors your blood pressure by analyzing the diameter of the blood vessels with each heartbeat. This happens automatically, so users are never aware of the test, and therefore do not skew the results by being anxious or behaving differently.

Read more