A flaw in a smart chastity device that puts your penis on lockdown could get your appendage imprisoned longer than you bargained for, security researchers say.
The device in question, Qiui’s Cellmate Chastity Cage, encases your favorite organ in a Bluetooth-enabled gadget that a trusted partner can lock and unlock remotely using a mobile app.
The problem, according to security researchers from UK-based Pen Test Partners, is that due to API flaws, a nontrusted party acting from anywhere could not only gain access to precise user location data, but could “prevent the Bluetooth lock from being opened, permanently locking the user in.”
“There is no physical unlock,” Pen Test Partners noted Monday in a blog post that details its months-long investigation into the device. “The tube is locked onto a ring worn around the base of the genitals, making things inaccessible.”
Qiui did not immediately respond to a request for comment.
The sex toy company calls the Cellmate the “world’s first app-controlled chastity device.” It’s polycarbonate, comes in two lengths and costs $189 (about £146 or AU$265).
“Qiui believes that a true chastity experience is one that keeps the wearer away from control over their own devices,” Qiui says on its site.
Of course, there’s surrender of control by choice. Then there’s loss of control by security flaw.
If the Cellmate falls into the hands of the wrong driver, the only way out would be to cut the wearer free using an angle grinder or other heavy tool that most people would probably prefer be kept away from their sensitive areas.
This isn’t the first time sex toys have raised security concerns.