It is only recently, that 'Smart' device makers have been adding security to their devices. TUYA, google them, on their development site, outline what they do and why. But it all comes down to HTTPS, certs, TLS (if you are lucky), etc. These are relatively secure, except for zero-day exploits. Hacks and security entities often do NOT publish their known zero-day exploits. So every smart plug on the planet, could be at risk right now, if enough bad actors have discovered any zero-day exploits, and chosen to leverage same. Using a VPN is one key way to improve on this situation, but you have to trust 3 things with the VPN model, 1) the client/source software, 2) the server/destination software, 3) the vendor of the VPN. But remember, VPNs are just another layer of software, so zero-day exploits for popular VPN implementations exist as well.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.