D-Link Forums

Announcements => Security Advisories => Topic started by: GreenBay42 on August 23, 2021, 06:25:37 AM

Title: Wired.com Security Disclosure regarding ThroughTek Kalay SDK
Post by: GreenBay42 on August 23, 2021, 06:25:37 AM
For more information, please visit https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10241 (https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10241)

On August 17, 2021, Wired (wired.com) disclosued a post on their site accusing ThroughTek Co, LTD, also known as TUTK, of security issues with it's popular IOT Kalay SDK. The Kalay SDK provides a plug-and-play system for connecting smart devices (IOT) with their corresponding mobile apps.

D-Link DOES NOT deploy/sell any hardware, software, or services, globally using ThroughTek Kalay SDK or protocols.


 - https://www.wired.com/story/kalay-iot-bug-video-feeds/ (https://www.wired.com/story/kalay-iot-bug-video-feeds/)

 - https://www.twcert.org.tw/tw/cp-104-5020-e9ab3-1.html (https://www.twcert.org.tw/tw/cp-104-5020-e9ab3-1.html)

 - https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9410 (https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9410)