1. Smart Home

Hackers may attack home networks through Philips Hue smart bulbs vulnerability

By

Security researchers discovered a vulnerability in the Philips Hue smart bulbs that may allow hackers to infiltrate a home’s network.

Cybersecurity firm Check Point revealed the exploit through a blog post, where it detailed the method of attack that hackers may use to take advantage of the bug.

The first step in the hack, which is made possible by a remote exploit in the ZigBee low-power wireless protocol that is used on many smart home devices, is for the hacker to take control of one Philips Hue smart bulbs. By adjusting the bulb’s color and brightness, the victim will be tricked into thinking that it is glitching out.

The smart bulb will appear as “unreachable” in the Philips Hue control app, so the victim will likely try to reset it by deleting the bulb and then reconnecting it to the app. Once the infected bulb is back online, the hacker will flood its control bridge with malware through the ZigBee exploit, then infiltrate the home network where the bridge is attached to spread ransomware and spyware, among other things.

The hack requires the victim to take action on a malfunctioning Philips Hue smart bulb, which has a good chance of happening due to the visibility of a flickering light bulb. The researchers already reached out to Signify, the parent company of Philips Hue, in November 2019 to provide information about the vulnerability, which has already been patched up in firmware version 1935144040.

Philips Hue smart bulb owners are recommended to check the software update section of the Philips Hue control app to make sure that the latest version of the software has been installed. It should not be an issue if automatic updates are enabled, otherwise, owners will need to manually download the new firmware version.

Check Point, in a joint decision with Signify, further delayed the release of the full technical details of the vulnerability. This delay is intended to give people sufficient time to update their Philips Hue smart bulbs, in order to protect themselves from hackers trying out the attack especially after its full details are eventually released by Check Point.

Editors' Recommendations

The best Roku devices for every home and every budget

Roku Streambar

The best Philips Hue deals and Philips Hue Starter Kit deals for October 2020

Philips Hue White and Color Ambience Starter Kit Review

Protect your privacy with the best cheap VPN deals for October 2020

best vpn for small business man holding phone app creation internet protocols protection network

What the biggest tech companies are doing to make the 2020 election more secure

what the biggest tech companies are doing to secure 2020 election i voted sticker

Amazon Echo Dot 3rd-Gen vs. Echo Dot 4th-Gen

Echo Dot 4th Gen Charcoal

Amazon Echo (3rd Gen) vs. Amazon Echo (4th Gen)

amazon echo 3rd gen vs 4th new 2

3rd Gen vs. 4th Gen Echo Dot Kids Edition: What’s new?

Amazon Echo Flex vs. Echo Dot

Google Home vs. Amazon Echo

What to buy on Prime Day 2020: Laptops, smart devices, tablets, and more

Best Prime Day Blender Deals 2020: What to expect

best memorial day deals for your home 2020 nutri blender new

Best Prime Day Instant Pot Deals 2020: What to expect

Instant Pot Duo 7-in-1 Electric Pressure Cooker

Best Prime Day Fire TV Deals 2020: What to expect

amazon fire tv stick cube recast deals pre prime day sale 2020

Let Alexa help you out on National Coffee Day with these tips and tricks

The best vacuums for 2020