Latest in Gear

Image credit:

iOS HomeKit bug exposed smart locks to unauthorized access

Apple has already put a fix in place.
Share
Tweet
Share

Sponsored Links

AOL

Apple has another security issue to deal with. As 9to5Mac reports today, Apple's HomeKit framework has a vulnerability that allows unauthorized access to connected smart devices like locks and garage door openers. Apple has already put in a server-side fix that rectifies the issue, but the fix also disables remote access to shared users. Apple says that the reduced functionality will be restored with an iOS 11.2 update next week.

While 9to5Mac didn't share the details of the vulnerability, it also reportedly opened up smart lights, thermostats and plugs to unauthorized control. This issue follows a High Sierra bug discovered last month that allowed users to gain admin access without a password.

Because the server-side fix has already been implemented, users do not need to take any additional steps to secure their smart products. Just be sure to install the iOS update when it's released in order to regain the reduced functionality.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
Tweet
Share

Popular on Engadget

Put Bernie Sanders almost anywhere with this Google Street View app

Put Bernie Sanders almost anywhere with this Google Street View app

View
The first big 'Cyberpunk 2077' patch has arrived

The first big 'Cyberpunk 2077' patch has arrived

View
NBC is shutting down its sports cable channel as the bundle contracts

NBC is shutting down its sports cable channel as the bundle contracts

View
The Morning After: The Galaxy S21 reviews are in

The Morning After: The Galaxy S21 reviews are in

View
President Biden appoints 'world-class' cybersecurity team in wake of hacks

President Biden appoints 'world-class' cybersecurity team in wake of hacks

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr