Vibratissimo Panty Buster
If you're looking for a connected sex toy that doesn't do much to protect your privacy and security, this is the one. This vibrator is designed to be worn in the panties against the skin and can be used at home, or discreetly in public. The app lets you or your partner hundreds of miles away operate the vibrator through a smartphone. The privacy and security problems with this device are many and well documented. The device allows for remote access without consent. The connection to the device from the app is via insecure Bluetooth, which can allow hackers to take control of the device if they are in range. This product seems to be made only for those who enjoy the thrill of potentially having their smart sex toy hacked.
What could happen if something goes wrong?
Mozilla did an independent security review of this product to confirm documented security problems. In our audit, security researchers found lots of critical vulnerabilities, including the ability to impersonate other users and remotely control the device. This means someone could simply pick your boyfriend's name and then pretend to be him while controlling the device remotely. According to our security audit, It's also fairly easy to hack into and control the device remotely. You can read our independent security review linked in the updates section below.
Can it snoop on me?
Camera
Device: No
App: Yes
Microphone
Device: No
App: Yes
Tracks location
Device: No
App: Yes
What can be used to sign up?
Can’t Determine
Phone
Can’t Determine
Third-party account
Can’t Determine
What data does the company collect?
Personal
Body related
Social
How does the company use this data?
How can you control your data?
What is the company’s known track record of protecting users’ data?
Can this product be used offline?
User-friendly privacy information?
Links to privacy information
Does this product meet our Minimum Security Standards?
Encryption
Strong password
Allows for remote access without consent. Partners send each other links to connect, but the links are easily guessable by anyone. For local access, it fails to authenticate.
Security updates
Manages vulnerabilities
Privacy policy
Does the product use AI?
Is this AI untrustworthy?
What kind of decisions does the AI make about you or for you?
Is the company transparent about how the AI works?
Does the user have control over the AI features?
News
Internet of Dildos: A Long Way to a Vibrant Future – From IoT to IoD
The sex toys of the “Vibratissimo” product line and their cloud platform, both manufactured and operated by the German company Amor Gummiwaren GmbH, were affected by severe security vulnerabilities. The information we present is not only relevant from a technological perspective, but also from a data protection and privacy perspective.
Penetration Testing Security Report for the Vibratissimo Panty Buster
This report documents the findings of a security assessment targeting the Vibratissimo Panty Buster. The project was carried out by Cure53 in October 2018 after being commissioned by The Mozilla Foundation.
The Vibratissimo Panty Buster is a vibrator that can be controlled remotely by an application. As the device is intended to be operated remotely by a partner, the application offers multiple features. This includes searching for other users, maintaining a list of friends, a video chat, a message board, and a feature to create and share image. It is vital to note that the Vibratissimo Panty Buster device made news in February 2018 due to being affected by security vulnerabilities. The problems reported in
the press concerned compromised privacy of the users’ devices.
Comments
Got a comment? Let us hear it.