Skip to main content
  1. Home
  2. Smart Home
  3. News

Hackers may attack home networks through Philips Hue smart bulbs vulnerability

Aaron Mamiit
By

Security researchers discovered a vulnerability in the Philips Hue smart bulbs that may allow hackers to infiltrate a home’s network.

Cybersecurity firm Check Point revealed the exploit through a blog post, where it detailed the method of attack that hackers may use to take advantage of the bug.

Recommended Videos

The first step in the hack, which is made possible by a remote exploit in the ZigBee low-power wireless protocol that is used on many smart home devices, is for the hacker to take control of one Philips Hue smart bulbs. By adjusting the bulb’s color and brightness, the victim will be tricked into thinking that it is glitching out.

Related

The smart bulb will appear as “unreachable” in the Philips Hue control app, so the victim will likely try to reset it by deleting the bulb and then reconnecting it to the app. Once the infected bulb is back online, the hacker will flood its control bridge with malware through the ZigBee exploit, then infiltrate the home network where the bridge is attached to spread ransomware and spyware, among other things.

The hack requires the victim to take action on a malfunctioning Philips Hue smart bulb, which has a good chance of happening due to the visibility of a flickering light bulb. The researchers already reached out to Signify, the parent company of Philips Hue, in November 2019 to provide information about the vulnerability, which has already been patched up in firmware version 1935144040.

Philips Hue smart bulb owners are recommended to check the software update section of the Philips Hue control app to make sure that the latest version of the software has been installed. It should not be an issue if automatic updates are enabled, otherwise, owners will need to manually download the new firmware version.

Check Point, in a joint decision with Signify, further delayed the release of the full technical details of the vulnerability. This delay is intended to give people sufficient time to update their Philips Hue smart bulbs, in order to protect themselves from hackers trying out the attack especially after its full details are eventually released by Check Point.

Editors' Recommendations

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received a NES and a copy of Super Mario Bros. for Christmas when he was 4 years old, and he has been fascinated with…
Smart lighting voice control guide
Philips Hue Appear Outdoor smart light.

While some of your fondest memories of home may be flicking a light switch off and on exactly 31 times before leaving a room, those days of physical input are quickly being relegated to the history books thanks to the smart home. One of the biggest conveniences of smart lighting is being able to control it all with your voice. Light systems like Philips Hue support all of the  popular voice assistants like Apple's Siri, Amazon's Alexa, and Google Assistant. How do these systems work, how do you set them up, and can they really understand your commands? Here are the the answers to all of these questions and more.
What are voice-activated devices?

Voice-activated devices record a user's audio commands and send those clips to remote servers to translate. It then returns commands or information to the device. In the case of smart lighting, a command can look like saying, "Hey Google, turn off all the lights," to your Google Nest Mini, which then shoots the clip over your home Wi-Fi network to Google's servers that translate it into a proper device command. That command is sent back to the Nest Mini, which figures out you want to do something with your smart light bulbs, sends that command to your lights, and voilà, your lights get turned off.

Read more
Smart light bulbs vs. smart switches: The pros and cons
Woman having glass of wine with Govee Smart LED light bulb on.

Updating your home lighting is a big project, and it may be easy to lean toward smart lights. However, smart light switches can deliver much of the same convenience at a lower cost. Let's put these two categories of products head to head and figure out which makes the most sense for your setup.
Do I need smart light bulbs with a smart switch?
You do not need smart bulbs to install smart switches. That's really what's so convenient about smart switches. They provide connectivity to lights without needing to change the bulbs themselves, so you can control them remotely from your phone, via voice assistants like Alexa and Siri, or by setting automations so they turn on at sunset. This feature is especially helpful when light fixtures are set at inaccessible locations, making bulb replacement challenging. Smart switches are also handy because they can activate other outlets that are connected to different appliances. This can give you the chance to remotely control a lot more than just lights.
Do smart switches work with normal light bulbs?
The vast majority of smart switches work with normal light bulbs. You'll need to check the packaging, though. Some smart light bulb manufacturers make switches specific to their light bulbs. For example, Philips has a dedicated switch that communicates wirelessly to all of the Hue bulbs in the house.

The smart switches that work with normal bulbs will have their own apps and setup processes where you'll have to wire them into your home's electrical. They'll also need Wi-Fi or Bluetooth to connect to the home network so you can control the switch from your devices and build automations. On that note, you'll want to make sure smart switches are in range of your Wi-Fi router to ensure consistent connectivity. So you may need to move your Wi-Fi router or get a network extender to ensure coverage.
Are smart lights or smart switches more expensive?
Smart switches tend to be cheaper than smart lights. You can certainly find cheap smart lights, and the fanciest smart switches can crest the $100 mark.  Those higher-end smart switches will often have features like built-in speakers and microphones so you can use voice assistants like Alexa.

Read more
How to use Philips Hue lights with geofencing
The Philips Hue app.

Smart lights are one of the greatest inventions since ... well, since Edison invented the light bulb. With smart lights, you can automate the lights in your home, access vast color spectrums, and create easy holiday lighting displays. One of the easiest ways to automate your lighting and create a safe entryway and a bright, welcoming home, is to use geofencing with smart lights such as Philips Hue.
What is geofencing?

A "geofence" is the virtual boundary you set for yourself and your devices.

Read more