Bluetooth Cellmate Chastity Cage Feedback
🔞 ALL INFORMATION CLICK HERE 👈🏻👈🏻👈🏻
Bluetooth Cellmate Chastity Cage Feedback
The Cellmate has been sold via several big-name online retailers as well as niche stores
The workaround involves prising open the circuit board and pressing batteries against two of the wires to trigger a motor
A sample of the co-ordinates revealed by Cellmate's servers showed the device has been used worldwide
By Leo Kelion Technology desk editor
A security flaw in a hi-tech chastity belt for men made it possible for hackers to remotely lock all the devices in use simultaneously.
The internet-linked sheath has no manual override, so owners might have been faced with the prospect of having to use a grinder or bolt cutter to free themselves from its metal clamp.
The sex toy's app has been fixed by its Chinese developer after a team of UK security professionals flagged the bug.
They have also published a workaround.
This could be useful to anyone still using the old version of the app who finds themselves locked in as a result of an attacker making use of the revelation.
Any other attempt to cut through the device's plastic body poses a risk of harm.
Pen Test Partners (PTP) - the Buckingham-based cyber-security firm involved - has a reputation for bringing quirky discoveries to light, including problems with other sex toys in the past.
It says the latest discovery indicates that the makers of "smart" adult-themed products still have lessons to learn.
"The problem is that manufacturers of these other toys sometimes rush their products to market," commented Alex Lomas, a researcher at the firm.
"Most times the problem is a disclosure of sensitive personal data, but in this case, you can get physically locked in."
Qiui's Cellmate Chastity Cage is sold online for about $190 (£145) and is marketed as a way for owners to give a partner control over access to their body.
Pen Test Partners believe about 40,000 devices have been sold based on the number of IDs that have been granted by its Guangdong-based creator.
The cage wirelessly connects to a smartphone via a Bluetooth signal, which is used to trigger the device's lock-and-clamp mechanism.
But to achieve this, the software relies on sending commands to a computer server used by the manufacturer.
The security researchers said they discovered a way to fool the server into disclosing the registered name of each device owner, among other personal details, as well as the co-ordinates of every location from where the app had been used.
In addition, they said, they could reveal a unique code that had been assigned to each device.
These could be used to make the server ignore app requests to unlock any of the identified chastity toys, they added, leaving wearers locked in.
Mr Lomas' team flagged the issue to Qiui in May, after which it updated its app as well as the server-based application programming interface (API) involved.
But it still left an earlier version of the API online, meaning those who had not downloaded the latest version of the app theoretically remained at risk.
Pen Test Partners sent follow-up emails urging this to be addressed and involved the news site Techcrunch to help press for action.
Five months on from first getting in touch, the UK security team decided to go public.
"Given the trivial nature of finding some of these issues and that Qiui is working on another internal device, we felt compelled to publish," Mr Lomas said.
Pen Test Partners acknowledged that in doing so, however, it made a real-world attack more likely.
Techcrunch reported there was no evidence that the hack had been exploited by anyone to cause harm.
But it noted that one online reviewer who appeared to have got locked in due to an unrelated bug posted that he had been left with "a bad scar that took nearly a month of recovery".
Gadget-makers face ban on easy-to-guess passwords
Sex toy with camera 'can be hacked'
King Charles III pays tribute to his 'darling mama' in first address
'I will miss her terribly' - your tributes to the Queen
Charles to be proclaimed king at historic ceremony
A constant presence in a changing world. Video A constant presence in a changing world
Queen Elizabeth II: A life in pictures
King greets mourners at Buckingham Palace. Video King greets mourners at Buckingham Palace
A glimpse inside King Charles's first audience with PM. Video A glimpse inside King Charles's first audience with PM
'We will never see a Queen again in our lifetime' Video 'We will never see a Queen again in our lifetime'
How titles and the line of succession have changed
World media mark the death of Queen Elizabeth II
Watch: The meteoric rise and dramatic fall of Boris Johnson. Video Watch: The meteoric rise and dramatic fall of Boris Johnson
© 2022 BBC. The BBC is not responsible for the content of external sites. Read about our approach to external linking.
Create an account to follow your favorite communities and start taking part in conversations.
This page may contain sensitive or adult content that's not for everyone. To view it, confirm your age.
Use of this site constitutes acceptance of our User Agreement and Privacy Policy. ©2022 reddit inc. All rights reserved. REDDIT and the ALIEN Logo are registered trademarks of reddit inc.
GBP
INR
CAD
USD
AUD
EUR
JPY
GBP
INR
CAD
USD
AUD
EUR
JPY
Home /
Collections / Cellmate Chastity Cages
Sort by:
Best selling
Featured
Best selling
Alphabetically, A-Z
Alphabetically, Z-A
Price, low to high
Price, high to low
Date, old to new
Date, new to old
Footer
Returns and Exchanges
Payment and Shipping
Security and Privacy
Terms and Conditions
Guides
Measurement Guide
Chastity User Guide
How to Put on a Chastity Cage
Verified Keyholders
American Express
Apple Pay
Diners Club
Discover
Google Pay
Maestro
Mastercard
PayPal
Shop Pay
Visa
The Cellmate chastity cage is the latest innovation in chastity technology. With previous chastity devices the cage is locked with a padlock or internal sliding lock and key. Instead, the Cellmate is (un)locked via a phone app available on iOS and Android from anywhere in the world.
This app controlled chastity device can be self locked or you can hand over complete control to your keyholder. Simply sign up for a free account, create a unique user ID, pair the device with your phone via bluetooth then send your keyholder permission to link your accounts. Put the device on and push the locking pin into the cage. From that point on your keyholder is the only person who can unlock you, which can be done from anywhere and at anytime.
The cage section is made from strong waterproof polycarbonate and the rings are made from lightweight zinc alloy. The cages are available in regular or long sizes and both kits include 2 different ring sizes; 47mm and 51mm, so you can experiment to find the one which is most comfortable for you.
Here at House of Denial we're very excited by this new technology and hope that you all find the app controlled system as beneficial as we do, particularly if your keyholder lives miles away or even in a different country.
We've been in touch with Qiui, the manufacturer, after hearing feedback from some Cellmate chastity cage wearers that had an issue with water leaking into the hidden battery compartment. This caused the device to fail. This was a one off batch and the issue was quickly identified and rectified. All of our stock is new and this issue doesn't exist with them.
You can download the Cellmate app on the Apple app store and the Google play store or it can be downloaded through each store directly on your phone.
All of our Cell mate stock is held and dispatched from our UK warehouse.
Copyright ©
2022
House of Denial .
Powered by Shopify .
This is a BETA experience. You may opt-out by clicking here
Opinions expressed by Forbes Contributors are their own.
New!
Follow this author to stay notified about their latest stories.
Got it!
Follow me on Twitter or LinkedIn . Check out my website or some of my other work here .
This remote sex toy hack could lead to an awkward hospital visit
Some things are best left disconnected from the internet. My office coffee machine, for example, is way too important to risk being infected with ransomware . But even access to fresh coffee pales into insignificance when compared to this adult sex toy device.
The Qiui Cellmate is an internet-connected chastity cage for men. The app-controlled device quite literally lets a partner lock your privates out of temptation's way. Unfortunately, as security researchers at Pen Test Partners discovered, a vulnerability meant that anyone with the desire so to do could control the device. Because the device was locked into place with a ring around the penis base, the researchers said an angle grinder or similar tool would be needed to cut it off. Ouch.
In a vulnerability disclosure report , Pen Test Partners said that the Bluetooth-enabled lock and clamp type device is meant to be able to give control of the lock over to a partner. Having been tipped off by users of the device, the researchers investigated how secure the sex toy and its accompanying app were. It should be noted that it's not known if anyone managed to exploit the vulnerabilities discovered in order to lock down someone's sex life remotely.
"Users were already reporting being locked in, through app flakiness," Alex Lomas, the researcher at Pen Test Partners who found the flaw, says, "however, the ability to remotely lock all users in to order was a game-changer." Lomas found that because there is no physical unlocking mechanism, a remote attacker could prevent the device from opening and so permanently lock the users into a state of enforced chastity.
The problem was with the mobile app, as the application programming interface (API) used to communicate with the device itself wasn't secured. The passwordless and open API effectively gave control to anyone who found that, aptly enough, an extended member code was the only authentication required. "The memberCode itself is somewhat deterministic," the researchers said, based on the date the user joined, but they also found a quicker method using a six-digit friend code instead.
Using this, it was possible, the researchers said, to return a "huge amount" of information including names, phone numbers, the member code, and even the membership password in plain text. "It wouldn't take an attacker more than a couple of days to exfiltrate the entire user database and use it for blackmail or phishing," the researchers stated.
As reported by TechCrunch , the vulnerability was first discovered back in June and China-based Qiui contacted. Because take-down during any remediation was complicated by the fact that taking the vulnerable API offline would effectively "lock in" all users already with the device locked on, Qiui instead added a secure API for new users.
Qiui CEO, Jake Guo, initially told TechCrunch, the publication said, it would fix everything in August. After that deadline went by, TechCrunch reported Guo emailed to say, "When we fix it, it creates more problems." I have reached out to Qiui for a statement and will update this article when it arrives.
Meanwhile, after a number of deadlines across six months were missed, Pen Test Partners said it decided to go public. This came after another researcher also discovered a different security issue and was said to have experienced difficulty in getting a response from Qiui.
"Smart adult toys gather the most private data about us, so vendors should have the best security and privacy controls possible," Lomas says, "if vendors won't listen, regulators should consider product bans."
By way of a public service announcement, just if you do find yourself locked into such a device, Pen Test Partners found a way to find release without resorting to power tools or, potentially, the emergency room. By prizing open the circuit board area by the front button, they found, you could apply enough voltage with two AA batteries to 'spike' the unlock motor.
That said, they warned that the emergency room "will probably have the right tools to cut through the metal safely, though and would be your better first port of call!
Wife Likes Sex
Close Up Squirting
Voyeur 2022