Tech

Apple issues fix for HomeKit vulnerability impacting smart locks and other devices

Apple issues fix for HomeKit vulnerability impacting smart locks and other devices

The vulnerability affects iPhones and iPads running iOS 11.2, the latest version of Apple's mobile operating system, and users who have connected the HomeKit application to their iCloud account. It's an iOS 11.2 bug that Apple has already fixed via a server patch, and an update to iOS 11.2 will come next week that fixes the other end of the bug on iOS devices (via 9To5Mac). While some of the issues related to the remote access flaw were addressed in iOS 11.2 and watchOS 4.2, enough of the issue remained to allow an attacker to gain remote access to connected smart home devices and appliances through HomeKit.

The vulnerability, which we won't describe in detail and was hard to reproduce, allowed unauthorized control of HomeKit-connected accessories including smart lights, thermostats, and plugs.

The implications of the vulnerability are extremely worrying, with the obvious concern being the ability for attackers to remotely open a smart lock or garage door and gain access to someone's house without a physical key.

More news: The Game Awards 2017 Will Reveal Two "Brand-New Game Worlds"

Apple customers don't need to take any action right now.

The iPhone maker said in a statement, "The issue affecting HomeKit users running iOS 11.2 has been fixed".

Apple has another security issue to deal with. Apple says that the reduced functionality will be restored with an iOS 11.2 update next week. Earlier versions of iOS aren't affected. Apple was informed of the HomeKit vulnerability (dating back to October) and fixed it server-side temporarily, with a full fix coming in an iOS update next week. The severity of this vulnerability also imposes a responsibility on 9to5Mac as a publication to share what we know with our audience if we're going to continue covering HomeKit and smart home products.


  • Jose Mourinho fears the worst for Manchester United in Champions League draw

    Jose Mourinho fears the worst for Manchester United in Champions League draw

    Shaw has found opportunities very hard to come by at United under Mourinho, who has publicly criticised the defender previously. Manchester United's Romelu Lukaku and Marcus Rashford responded with goals on the 64th and 66th minutes, respectively.

    Bed Bath & Beyond (NASDAQ:BBBY) Getting Somewhat Favorable Press Coverage, Accern Reports

    The retailer reported $0.67 earnings per share (EPS) for the quarter, missing the Zacks' consensus estimate of $0.95 by ($0.28). Bed Bath & Beyond has a 1-year low of $34.17 and a 1-year high of $48.83. (NASDAQ: BBBY ) earned "Neutral" rating by Robert W.
    Asif Zardari meets Tahirul Qadri in Lahore

    Asif Zardari meets Tahirul Qadri in Lahore

    Earlier, in a telephonic conversation with Qadri, Asif Zardari said that PPP is with PAT as the martyrs should get justice at all costs.
  • Terrifying footage shows California drivers commuting mid-wildfire

    Terrifying footage shows California drivers commuting mid-wildfire

    California Governor Jerry Brown declared a state of emergency on Tuesday, freeing state funds and resources to assist. Violent Santa Ana winds continued to hamper efforts as gusts hit up to 80 miles per hour at their peak.
    Irrfan Khan honoured at Dubai Film Fest

    Irrfan Khan honoured at Dubai Film Fest

    The Dubai International Film Festival ( DIFF ) started with a heavy dose of glitz and glamour at the Madinat Jumeirah . The festival was honoured by the presence of His Highness Sheikh Mansoor bin Mohammed bin Rashid Al Maktoum.
    First Solar, Inc. (FSLR)

    First Solar, Inc. (FSLR)

    The stock's 50-day average volume has been 2,478,154 shares, with an average of 75% of medium term indicators pointing toward Buy. It has underperformed by 42.02% the S&P500.The move comes after 7 months positive chart setup for the $953.57 million company.
  • Crown Castle International Corp (CCI) and Invesco Plc (IVZ)

    Grisanti Capital Management LLC raised its holdings in shares of Crown Castle International by 10.2% during the 3rd quarter. Sumitomo Mitsui Trust Holdings Inc increased Crown Castle Intl Corp ( CCI ) stake by 1.92% reported in 2017Q2 SEC filing.
    Derek McInnes to stay as Aberdeen manager and will not join Rangers

    Derek McInnes to stay as Aberdeen manager and will not join Rangers

    Asked if he is likely to be in charge for the trip to Dundee should McInnes leave the club, Sheerin said: "Again I'm not sure". Rangers have failed with an appeal against the red card Ryan Jack received in Sunday's 2-1 win away to Aberdeen .
    Accidental gun killings surged after Sandy Hook school shooting

    Accidental gun killings surged after Sandy Hook school shooting

    But until now, there hadn't been any definitive proof that these rises in gun sales resulted in any surge in gun deaths. Because the authors are limited by the lack of reliable data on USA gun ownership, she says, "they do something smart".
  • Philippe Coutinho Unsure About His Future At Liverpool

    Philippe Coutinho Unsure About His Future At Liverpool

    From where I see it, he is more comfortable inside, but the good thing about this player is that he can play in various positions.
    Polish finance minister to replace PM Beata Szydlo

    Polish finance minister to replace PM Beata Szydlo

    Before his nomination, he had also been serving as deputy prime minister. Further changes to the government are due in January, the PAP said.
    Lindsay Lohan wants a 'Mean Girls' sequel with original cast

    Lindsay Lohan wants a 'Mean Girls' sequel with original cast

    McAdams has yet to say if she would return for a sequel , but has talked about how much fun she had making the movie. Lohan is now living her best life in Dubai, and said she doesn't see herself moving back to the USA any time soon.