{"id":4093,"date":"2018-06-22T15:35:55","date_gmt":"2018-06-22T15:35:55","guid":{"rendered":"https:\/\/kasperskycontenthub.com\/threatpost\/?p=133005"},"modified":"2018-06-22T15:35:55","modified_gmt":"2018-06-22T15:35:55","slug":"roku-tv-sonos-speaker-devices-open-to-takeover","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/","title":{"rendered":"Roku TV, Sonos Speaker Devices Open to Takeover"},"content":{"rendered":"<div class=\"media_block\"><\/div>\n<div><img decoding=\"async\" src=\"https:\/\/media.kasperskycontenthub.com\/wp-content\/uploads\/sites\/31\/2016\/07\/06234622\/iot.png\" class=\"ff-og-image-inserted\"\/><\/div>\n<p>The DNS rebinding flaw reported in Google Home and Chromecast devices earlier this week is about to get a patch \u2014 but the same type of flaws have come to light for other top-name consumer Internet of Things devices, from Roku and Sonos.<\/p>\n<p>Fortunately, Roku has already started deploying its update, while Sonos said it will \u00a0issue a patch in July.<\/p>\n<p>If exploited, the devices are open to attacker hijacks, thanks to two common IoT issues: One, many IoT devices don\u2019t require authentication for connections received on a local network; and two, locally, HTTP is often used to configure or control embedded devices.<\/p>\n<p>DNS rebinding has been around for at least 10 years, originally used to control routers; it\u2019s a technique where JavaScript in a malicious web page is used to communicate with or gain control of a victim router or other target device that uses a default password and web-based administration.<\/p>\n<p>As researcher Brannon Dorsey, who uncovered the weaknesses in Roku and Sonos, explained in <a href=\"https:\/\/medium.com\/@brannondorsey\/attacking-private-networks-from-the-internet-with-dns-rebinding-ea7098a2d325\" target=\"_blank\" rel=\"noopener\">a post<\/a> on Tuesday: \u201cDNS rebinding allows a remote attacker to bypass a victim\u2019s network firewall and use their web browser as a proxy to communicate directly with devices on their private home network. By following the wrong link, or being served a malicious banner advertisement, you could inadvertently provide an attacker with access to [an IoT device connected to the same home network].\u201d<\/p>\n<p>Tripwire researcher Craig Young <a href=\"https:\/\/threatpost.com\/google-home-chromecast-leak-location-information\/132912\/\" target=\"_blank\" rel=\"noopener\">recently found that as a result<\/a>, an attacker can use DNS rebinding to carry out an attack to uncover location information on the Google devices.<\/p>\n<p>\u201cThis is a serious privacy and safety issue because it means that if you browse the web from the same Wi-Fi as a Google Home or Chromecast, that web site\u2019s operator can find you in the real-world. This has grave implications for cyberstalking as predators are just one click away from finding their victims offline,\u201d said Young, via email.<\/p>\n<p>This week, Dorsey confirmed the Google issues, and also found a DNS rebinding attack vector for both Roku video streaming devices (CVE-2018\u201311314) and the Sonos Wi-Fi speakers (CVE-2018\u201311316).<\/p>\n<p>On the Roku front, he found that Roku\u2019s local External Control API requires no authentication and can be exploited via DNS rebinding. The API provides control over the basic functionality of the set-top streaming device, including launching apps, searching for content and ordering playback\u2014all of which can now be controlled by an attacker.<\/p>\n<p>\u201cInterestingly, it also allows direct control over button and key presses like a virtual remote, as well as input for several sensors including an accelerometer, orientation sensor, gyroscope and even a magnetometer (why?),\u201d Dorsey said.<\/p>\n<p>After some back-and-forth with the researcher, Roku agreed to patch the problem and said that it\u2019s in the process of rolling out the updated firmware to its customers.<\/p>\n<p>As for Sonos, Dorsey said that an attacker can use rebinding to leverage Sonos\u2019 UPnP web server to run Unix shell commands on the device. A bad actor can take basic control of the device: \u201cBy following the wrong link you could find your pleasant evening jazz play list interrupted by content of a very different sort,\u201d he said.<\/p>\n<p>But there are other concerns too: \u201cThe Sonos HTTP API allows a remote attacker to map internal and external networks using the traceroute command and probe hosts with ICMP requests with ping, using simple POST requests,\u201d he explained. And from there, an attacker could use a Sonos device as a \u201cpivot point,\u201d he explained, to find other information about the home network and the devices on it, from which he or she could mount further attacks.<\/p>\n<p>A fix is incoming: \u201cUpon learning about the DNS rebinding attack, we immediately began work on a fix that will roll out in a July software update,\u201d Sonos said in a statement.<\/p>\n<p>As mentioned, the IoT issues that lead to these flaws are by no means restricted to these vendors. The issue runs deep, also affecting a raft of <a href=\"https:\/\/www.trustwave.com\/Resources\/Security-Advisories\/Advisories\/TWSL2013-022\/?fid=3870\" target=\"_blank\" rel=\"noopener\">connected thermostats<\/a> and <a href=\"https:\/\/www.akamai.com\/us\/en\/multimedia\/documents\/white-paper\/upnproxy-blackhat-proxies-via-nat-injections-white-paper.pdf\" target=\"_blank\" rel=\"noopener\">small\/home office routers<\/a>, amongst other IoT equipment.<\/p>\n<p>\u201cHow is it that so many devices today could be vulnerable to an attack that was introduced over 10 years ago?\u201d Dorsey said. \u201cThere are likely more reasons for this than I can explain, but I\u2019m willing to bet money on two of them.\u201d<\/p>\n<p>Awareness in the cybercrime community \u2013 or rather lack thereof \u2013 is the first thing.<\/p>\n<p>\u201cIt\u2019s historically been a sort of cumbersome and difficult to pull off attack in practice,\u201d he said. \u201cYou have to spin up a malicious DNS server in the cloud, write some custom JavaScript payload targeting a specific service, serve that to a victim on a target network, and then figure out how to use their web browser to pivot to a target machine running that service, which you probably don\u2019t know the IP address of. There\u2019s overhead and it\u2019s error prone.\u201d<\/p>\n<p>And secondly, developers are not writing software that treats local private networks as if they were hostile public networks.<\/p>\n<p>\u201cEven if DNS rebinding becomes more popular in cybersecurity communities, that isn\u2019t a guarantee that we\u2019ll see a large drop in the number of vulnerable devices,\u201d he explained. \u201cThat\u2019s because security nerds aren\u2019t the ones implementing these APIs, web developers are. Sure, web developers should know that externally facing API endpoints need authorization of some kind, but there is a recurring general consensus that private networks themselves can be used to secure intranet facing APIs\u2026The idea that the local network is a safe haven is a fallacy. If we continue to believe it people are going to get hurt.\u201d<\/p>\n<p>READ MORE <a href=\"https:\/\/threatpost.com\/roku-tv-sonos-speaker-devices-open-to-takeover\/133005\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Roku streaming video device and the Sonos Wi-Fi speakers suffer from the same DNS rebinding flaw reported in Google Home and Chromecast devices earlier this week. READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":4094,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[3],"tags":[1521,1386,1522,530,18,77,1523,1524,1525,19,1526],"class_list":["post-4093","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-threatpost","tag-account-takeover","tag-chromecast","tag-dns-rebinding-flaw","tag-google-home","tag-hacks","tag-iot","tag-roku","tag-sonos","tag-streaming-video","tag-vulnerabilities","tag-wi-fi-speakers"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Roku TV, Sonos Speaker Devices Open to Takeover 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Roku TV, Sonos Speaker Devices Open to Takeover 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2018-06-22T15:35:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/roku-tv-sonos-speaker-devices-open-to-takeover.png\" \/>\n\t<meta property=\"og:image:width\" content=\"680\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Roku TV, Sonos Speaker Devices Open to Takeover\",\"datePublished\":\"2018-06-22T15:35:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/\"},\"wordCount\":948,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/roku-tv-sonos-speaker-devices-open-to-takeover.png\",\"keywords\":[\"account takeover\",\"chromecast\",\"dns rebinding flaw\",\"google home\",\"Hacks\",\"IoT\",\"roku\",\"sonos\",\"streaming video\",\"Vulnerabilities\",\"wi-fi speakers\"],\"articleSection\":[\"Threatpost\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/\",\"name\":\"Roku TV, Sonos Speaker Devices Open to Takeover 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/roku-tv-sonos-speaker-devices-open-to-takeover.png\",\"datePublished\":\"2018-06-22T15:35:55+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/roku-tv-sonos-speaker-devices-open-to-takeover.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/roku-tv-sonos-speaker-devices-open-to-takeover.png\",\"width\":680,\"height\":400},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/roku-tv-sonos-speaker-devices-open-to-takeover\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"account takeover\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/account-takeover\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Roku TV, Sonos Speaker Devices Open to Takeover\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Roku TV, Sonos Speaker Devices Open to Takeover 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/","og_locale":"en_US","og_type":"article","og_title":"Roku TV, Sonos Speaker Devices Open to Takeover 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2018-06-22T15:35:55+00:00","og_image":[{"width":680,"height":400,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/roku-tv-sonos-speaker-devices-open-to-takeover.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Roku TV, Sonos Speaker Devices Open to Takeover","datePublished":"2018-06-22T15:35:55+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/"},"wordCount":948,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/roku-tv-sonos-speaker-devices-open-to-takeover.png","keywords":["account takeover","chromecast","dns rebinding flaw","google home","Hacks","IoT","roku","sonos","streaming video","Vulnerabilities","wi-fi speakers"],"articleSection":["Threatpost"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/","url":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/","name":"Roku TV, Sonos Speaker Devices Open to Takeover 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/roku-tv-sonos-speaker-devices-open-to-takeover.png","datePublished":"2018-06-22T15:35:55+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/roku-tv-sonos-speaker-devices-open-to-takeover.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/roku-tv-sonos-speaker-devices-open-to-takeover.png","width":680,"height":400},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/roku-tv-sonos-speaker-devices-open-to-takeover\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"account takeover","item":"https:\/\/www.threatshub.org\/blog\/tag\/account-takeover\/"},{"@type":"ListItem","position":3,"name":"Roku TV, Sonos Speaker Devices Open to Takeover"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/4093","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=4093"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/4093\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/4094"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=4093"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=4093"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=4093"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}