Apple Fixes iOS 11.2 Homekit Vulnerability

Ivan Schwartz
December 9, 2017

A HomeKit vulnerability was found in the current version of iOS 11.2 that gave unauthorised access to connected smart devices like smart locks and garage door openers. It describes the bug as "difficult to reproduce", but said that it potentially "allowed unauthorized control of HomeKit-connected accessories including smart lights, thermostats, and plugs". Still, it was unsafe.

The vulnerability, disclosed to 9to5Mac, required at least one iPad, iPhone or iPod Touch running the latest software version iOS 11.2 to have connected to the iCloud account associated with the HomeKit system.

Users who were affected don't need to take any action to secure their devices as Apple has already implemented a server side update, which has fixed the problem. However, "The fix temporarily disables remote access to shared users, which will be restored in a software update early next week", an Apple spokesperson said. The company rushed out a fix for the security bug, which then broke the file sharing system, which itself needed fixing in a later software update.

Soul Calibur VI Revealed With Release Window
As far as the story goes, SoulCalibur VI takes place in the 16th century and revisits the events of the original game. The most recent entry in the mainline series, Soulcalibur 5, was released for PlayStation 3 and Xbox 360 in 2012.

Dorsey & Whitney Trust CO LLC Trims Position in Occidental Petroleum Corporation (OXY)
Its up 0.43, from 1.15 in 2017Q1. 57 funds opened positions while 82 raised stakes. (NYSE:AGI) to report earnings on February, 22. The oil and gas producer reported $0.18 earnings per share for the quarter, topping the consensus estimate of $0.11 by $0.07.

New wildfire breaks out in San Diego County
More than 1,000 firefighters are battling the blaze, one of several that have broken out in Southern California this week. Within hours, the fire scorched more than 6 square miles in the Bonsall area, well known for its thoroughbred training.

Bugs do happen and IoT gadgets like smart locks definitely aren't immune to them, but it appears Apple has really dropped the ball recently when it comes to the security of their products. The flaw was first spotted by 9to5Mac, which was later confirmed by Apple. But it raised concerns about smart home functionality as users connect more devices to ecosystem such as HomeKit, Alexa, and others.

However this is only temporary as Apple does plan on fixing the vulnerability permanently in future software updates, but in the meantime hopefully the temporary fix will prevent any unwanted consequences.

Other reports by GizPress

Discuss This Article