Calvin Star
Calvin Star is a Security Researcher at jTag Labs Ltd and a full-time Systems Administrator by day. With a passion for security that extends into his off-hours, Calvin applies his deep knowledge of systems architecture and administration to uncover vulnerabilities in real-world software and infrastructure. His past research includes multiple disclosures, such as the Roomcast vulnerabilities (CVE-2023-33742 through CVE-2023-33745) and a series of flaws in Caterease (CVE-2024-38881 through CVE-2024-38891). Calvin's approach bridges practical IT operations and offensive security, helping make systems more secure through responsible disclosure and hands-on research.
Session
Embarking on our first hardware hacking project, we came across the Furbo treat dispensing smart-camera for pets. Over the course of 3 months of research we identified nearly 40 vulnerabilities across the mobile application, the Bluetooth communications, and devices. This talk will showcase our journey to destroy pet-surveillance devices, our struggles with defeating the firmware encryption, more than a few vulnerabilities found along the way, and we will show you how we got it to play Darude Sandstorm!