Skip to main content
  1. Home
  2. Smart Home
  3. Smart Home News

20 Samsung SmartThings Hub vulnerabilities jeopardized smart homes

By

Cisco’s Talos cybersecurity experts reported 20 vulnerabilities in the Samsung SmartThings Hub. Talos didn’t publicize the widespread weaknesses until after Samsung readied a firmware update for SmartThings customers.

The Samsung SmartThings Hub plays a central role for other SmartThings components including thermostats, cameras, light bulbs, smart plugs, motion detectors and more.

Recommended Videos

The threat also extended beyond Samsung’s smart home devices. The SmartThings Hub runs on Linux-based firmware that enables interoperability with other Internet of Things (IoT) smart home devices via Ethernet, Zigbee, Z-Wave, and Bluetooth connections. In other words, anyone who exploited the Hub’s weaknesses could potentially control all connected electronic devices in the home.

Related

Other smart home vulnerabilities

Talos cybersecurity experts noted, “In total, Talos found 20 vulnerabilities in the Samsung SmartThings Hub. These vulnerabilities vary in the level of access required by an attacker to exploit them and the level of access they give an attacker. In isolation, some of these might be hard to exploit, but together they can be combined into a significant attack on the device.”

Some of the potential threat scenarios exposed because of the Hub vulnerability include:

  • Unlocking doors protected with smart locks
  • Disabling motion detectors and security cameras
  • Damaging appliances connected to smart plugs

Regarding the exploit and the subsequent firmware update, Samsung responded by email to GearBrain, “Samsung takes security very seriously, and our products and services are designed with security as a priority. We are aware of the security vulnerabilities for SmartThings Hub V2 and released a patch for the automatic update to address the issue. All active SmartThings Hub V2 devices in the market are updated to-date.”

How to check your Samsung SmartThings Hub firmware version

Samsung pushes out over-the-air (OTA) software and firmware updates to active devices, but it’s always a good idea to check on your own to confirm that nothing interfered with the update.

You can check your SmartThings Hub’s firmware version in three ways: The SmartThings mobile app, the SmartThings Classic app, and the SmartThings web console.

Once you have opened either of the apps or logged in to the website, click on Hub or Hubs and then check the Firmware Version field.

Editors’ Recommendations

Please enable Javascript to view this content

Topics
Bruce Brown
Bruce Brown
Contributing Editor
Bruce Brown Contributing Editor   As a Contributing Editor to the Auto teams at Digital Trends and TheManual.com, Bruce…
Samsung expects to ship Ballie, its futuristic AI robot, later this year
A close-up look at Ballie from the side.

Samsung first revealed Ballie several years ago at CES 2020 -- only for the home bot to go dark, before reemerging with a new design at CES 2024. At CES 2025, Ballie once again took the stage, and Samsung is officially claiming that the adorable robot will be coming to store shelves sometime this year. It’s been a long time coming, but it seems as if Ballie is ready to become your new household companion, and we’re excited about all the possibilities it can bring to your smart home.

Ballie is a home bot that makes liberal use of AI technology. It’s billed as a “self-propelled, autonomous home robot” designed with companionship, health monitoring, and entertainment features to help streamline your day-to-day tasks. Its built-in projector and speakers are the main way it’ll communicate with users, and they seem to be pretty robust.

Read more
This app turns your Apple Watch into a Mac and smart home gesture hub
Wow Mouse app for Mac click and gesture control.

Just about a year ago, a startup named DoublePoint launched a gesture control app that lets smartwatch users control phones, tablets, and headsets, among other devices. The Apple Watch has finally received its own version.

In the lead-up to CES 2025, Doublepoint introduced the WowMouse app for Apple Watch, which boasts a few algorithmic refinements and a partnership with Bosch. The app’s Android version has already raked in over 100,000 downloads, says the company.

Read more
These buttons and dials offer a unique way to access your smart home
The Flic Smart Button on a table.

One of the major pain points of the modern smart home is its digital nature. Whether it’s controlling your smart lights, robot vacuum, smart lock, or thermostat, there’s a good chance you’re using a smartphone for most of your interactions. That makes it less than ideal for other members of the household -- or even guests -- to make changes to your setup. This is where Flic comes into play, as the company offers a lineup of physical buttons and dials so everyone can use your favorite smart devices without the need for a digital interface.

I’ve been testing out both the Flic Smart Buttons and Flic Twist, and while they lack certain functionalities, they’re bound to be a fun addition to most smart homes. That’s especially true if you use Alexa or HomeKit, as both platforms work with the innovative smart buttons.
The Flic app makes setup a breeze

Read more