I think everyone in the HN crowd knows that.
> the blame should be on Microsoft
No, they blame should ALSO be on Microsoft, they are the enablers.
I actually did not. I know there is some degree of two-way communication over HDMI/DP, and was curious if this was how the software was installed. I think discussing the technical details is a great use of the HN comment section.
(Wifi enabled display device -> HDMI -> Device) would be an incredibly interesting attack vector.
I would think everyone in the HN crowd would be aware of HEAC, the hdmi Ethernet channel, etc.
With full access to the hosts tcp/ip stack, we’d do well not to overlook the potential vectors for a monitor to install software on your computer… especially when the operating system is complicit.
Not really. AutoRun ran whatever was on the USB drive, with no oversight. This installs a driver from a company that's supposed to be reputable enough to get their driver signed by MS and pass validation. LG breached that trust here.
I think you overestimated how reputable is enough.
I wouldn't put it past most of these companies.
The consequence of Windows having the blame is that one should not buy it.
So once an person is victimized in this way, it becomes a free-for-all where future transgressions cease to matter?
Neato.