![\"Who-is-looking-thru-the-Google-Glass\"](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/86\/2014\/09\/05200158\/Who-is-looking-thru-the-Google-Glass2.png\")
<\/a><\/p>\nThe reason for this topicality is, like last September and the September before that and so on and so forth since the dawn of iPhone, Apple held one of its special look-at-all-of-our-new-things event. This year, the centerpiece of that event was perhaps the most eagerly anticipated wearable since Google Glass: the Apple Watch.<\/p>\n
My colleague Alex Savitsky did a nice job of summing up the types of people that anticipate these devices in his analysis of security in Apple\u2019s new payment platform<\/a>, but I\u2019d like to revise his three types to these four: the people who stubbornly refuse to buy Apple products as if they were slighted by the late Steve Jobs himself, the people who tweet and blog sardonically about how Apple is the worst from their beloved Macbook Pro with retina display, the people who would buy dirt from Apple and troll your comment section for days if you suggested that Apple\u2019s iDirt is just sort of the same as regular dirt and, finally, people who are just generally excited about a new product with all sorts of interesting uses.<\/p>\n To steal another colleague\u2019s words, this time Peter Beardmore<\/a>, and use them in a totally different context, the \u201cpremium\u201d users pay for all of these flavor-of-the-week products, whether it\u2019s the Apple Watch, Google Glass or a dishwasher that asks you about your day and actually listens when you launch into a diatribe about how no one at work appreciates you, is almost never based on security.<\/p>\n Here\u2019s the problem: innovative devices face traditional threats and are, sometimes, more susceptible to them. Perhaps even worse yet, in time, innovative devices will face innovative threats. And Apple Watch, as its rather Orwellian name suggests, will do just that. It and all the other wearables will watch what you do, gathering information about you and shipping it off to any number of third parties.<\/p>\n Roberto Martinez, a security and malware analysts on Kaspersky Lab\u2019s Global Research and Analysis Team, struck at the core of this issue in a recent Securelist article, examining the peaks and pitfalls of Google Glass<\/a>.<\/p>\n \u201cNew and existing devices have many things in common: they use the same protocols and are interconnected with other devices using similar applications. There is no way around this. Traditional attack vectors are mainly against the network layer in the form of <\/em>Man-in-The-Middle<\/em><\/a> (MiTM), the exploitation of some vulnerability in the operating system, or the applications themselves. Being based on Android, Glass could inherit known vulnerabilities found in other devices with the same OS.\u201d<\/em><\/p>\n Martinez goes on to describe an incredibly simple attack, uncovered initially by the mobile security firm, Lookout. One way Google Glass is tuned to connect to the Internet is through viewing QR codes generated by a special mobile app. When Google Glass sees these codes, it will connect automatically. So, all Lookout had to do was create its own QR code, compel Google Glass to view it, and now the device is paired to a wireless network under the control of a potentially malicious party. This is a perfect example of an old threat (malicious QR codes<\/a>) works affectively against a new device.<\/p>\n