Joe Biden is now the President of the United States of America, and what are the papers talking about?
His internet-connected Peloton exercise bike.
- “Why Joe Biden Can’t Bring His Peloton to the White House” – Popular Mechanics.
- “Good luck with the Peloton, Joe Biden. You’ll need it” – The Times.
- “Joe Biden’s Peloton bike may pose cybersecurity risk, experts warn” – The Guardian.
- “Peloton indoor bike prepares to enter the White House – but will it be barred?” – Cycling Weekly.
The concern doesn’t appear to be that some Blofeld-type villain might remotely hijack the device and sign the septuagenrian up for a heart-exerting powerzone ride whilst blaring out hits from “The Greatest Showman.”
Instead, the primary worry appears to be that Peloton exercise bikes come with a built-in camera and microphone. No, I don’t understand why anyone sweating buckets and gasping for breath as they complete their spin class would want to (or even be able to) have a video chat with their fellow riders, but apparently it’s possible.
But it’s also a privacy threat that’s not impossible to fix. Just like you can cover the webcam of your laptop with a sticky note or some gaffa tape, you can do the same with the camera on your Peloton exercise bike.
Microphones are a little trickier to physically disable. Unlike your laptop, there’s no 3.5mm jack on a Peloton bike for an external device, meaning you can’t plug it with an adapter to trick the device into thinking there is an alternative microphone plugged in.
You could, I suppose, identify where the microphone is and “bandage” it up with tape and wadding to muffle any recordings it might potentially make – but that’s hardly ideal.
My guess is that President Biden may be able to get the same treatment that apparently was meted out for former first lady Michelle Obama.
According to a 2017 report in The Verge, she was given a specially-modified Peloton bike that had the video camera and microphone feature disabled, and presumably didn’t find it ruined her workouts in any way.
Peloton doesn’t appear to be comfortable commenting on whether it will give President Biden a specially-modified bike, but it’s hard to imagine that they would be resistant to helping him out – given the kudos and attention the brand gets through the endorsement of the USA’s commander in chief.
But that doesn’t mean that Peloton is keeping entirely schtum about Biden’s love of their bike. The company couldn’t resist posting a tweet upon the arrival of a President who was keener on exercise than his predecessor.
— Peloton (@onepeloton) January 20, 2021
Peloton, by the way, recognises that its products are unlikely to be bug-free, and encourages researchers to contact them directly and follow the principles of responsible disclosure if they find a vulnerability in its exercise devices.
Is President Biden’s Peloton the most important cybersecurity issue facing the United States today? No. It doesn’t really feel like something breaking into a sweat about.
Is it the most fun to talk about? Yes, and that’s why so many newspapers have written some many column inches about it in the last few days.
See also: Peloton exercise bikes found exposing user data – company dawdles in its response
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.