Unsecured Bluetooth Penis-Chastity Lock Toy: Bad Idea
Tuesday, October 6th, 2020 -- by Bacchus
Look, folks. Sometimes “just because we can” is not a good enough reason to hook your sex toys to the internet. Sometimes, the old analog ways of doing things are better. Especially if what you’re doing is locking up your penis:
But wait! Wouldn’t if be fun if we didn’t need a key? We could Bluetooth it! And have an app! And then my virtual keyholder could lock or unlock the cock from anywhere in the world! What could possibly go wrong?
What could go wrong, you ask? Here’s your answer: The Qiui internet-connected penis chastity lock. Zack Whittaker at Tech Crunch has the story: Security flaw left ‘smart’ chastity sex toy users at risk of permanent lock-in
This could have been bad.
U.K.-based security firm Pen Test Partners said the flaw in the Qiui Cellmate internet-connected chastity lock, billed as the “world’s first app controlled chastity device,” could have allowed anyone to remotely and permanently lock in the user’s penis.
The Cellmate chastity lock works by allowing a trusted partner to remotely lock and unlock the chamber over Bluetooth using a mobile app. That app communicates with the lock using an API. But that API was left open and without a password, allowing anyone to take complete control of any user’s device.
Because the chamber was designed to lock with a metal ring underneath the user’s penis, the researchers said it may require the intervention of a heavy-duty bolt cutter or an angle grinder to free the user.
I’m no expert on penis cages or lockable male chastity devises, but I gather some users enjoy having other parties in control of when and how they can free their dick long enough to have a satisfying sexual experience.
You might trust your lover with the keys to that experience. But once you connect your cock lock to the internet, suddenly there’s a third party in your triangle of lust and frustration: A basement crew of unresponsive Chinese developers, along with everybody in the world smart enough to hack their weak-ass software. How’s that going to end? Not well!
Qiui chief executive Jake Guo told TechCrunch that a fix would arrive in August, but that deadline came and went. “We are a basement team,” he said…
It’s not known if anyone maliciously exploited the vulnerable API. Several user reviews of the app complained that the app had bugs that would cause the device to stay locked.
Image credits, top to bottom: Kami Tora, Froaden, KD Pierre.
Similar Sex Blogging: