• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer
  • Our Services
  • Contact Us
  • Newsletter
  • Top Nav Social Icons

Mobile ID World

Mobile ID World

Identification Revolution

  • Mobile ID
    • What Is Mobile ID?
    • Identity Associations
    • Premier Partners
    • FAQ
  • News
  • Solutions
    • Behavioral
    • Facial Recognition
    • Fingerprint Biometrics
    • Iris Biometrics
    • Second Factor
    • Smart Cards
    • Smartphones
    • Vital
    • Voice
    • Wearable Tech
    • Other
  • Applications
    • Access Control
    • Cloud Technology
    • Commerce
    • Enterprise
    • Healthcare
    • Identification
    • Internet of Things
    • Law Enforcement
    • Strong Online Authentication
  • Exclusive
    • Interviews
    • Featured Articles
    • Podcasts
  • Companies
  • Events

Researchers Warn of Security Flaw in Philips Hue Smart Bulbs

February 10, 2020

Researchers Warn of Security Flaw in Philips Hue Smart Bulbs

A team of researchers from software company Check Point have released a report that highlights a potential security flaw in the Philips Hue smart bulbs.

The report, released last week, shows how a team of researchers working with the help of the Check Point Institute for Information Security (CPIIS) in Tel Aviv University were able to hack into an internet of things (IoT) network by targeting vulnerabilities in the ZigBee low-power wireless protocol that is used to control the smart bulb.

The attack starts with the hacker taking control of the Philips Hue bulb and installing some malicious firmware, allowing them to control the brightness and color of the bulb from afar.

This tricks the user into thinking their smart bulb has a glitch, as it also shows up as ‘Unreachable’ in their control app, prompting them to reset it by deleting it and then re-installing it. Once the bulb containing the malicious firmware is re-installed the hacker is able to access the ZigBee network and attack it with ransomware or spyware.

This latest report further reinforces concerns over the vulnerability of devices on IoT networks, especially considering how rapid the sector is growing.

At the 2017 IEEE Symposium on Security and Privacy, another team of academic researchers published their own report showing how their ability to take over and control smart bulbs could lead to a chain reaction allowing them to take over — in theory — a vast number of IoT connected devices spread across an entire city.

Check Point reached out to Philips and parent company Signify with the security flaw and a firmware patch was released shortly thereafter to fix the vulnerability.

Sources: Axios, Check Point

Filed Under: Industry News Tagged With: hack attacks, hacking, Internet of Things, IoT, IoT devices, IoT security, malware, network connectivity, network security, Security, security vulnerabilities, smart devices

Related News & Articles

Zwipe Sees No Negative COVID-19 Effects in Q1 Update

New Pixel 4 Images Show Big Camera Bump, and No Fingerprint Sensor

WISeKey Creates NFT ‘Birth Certificates’ for Luxury Watches

Primary Sidebar

Register For the Next Virtual Identity Summit

Register now!

Tweets

Sponsored Links

facetec logo

FaceTec’s patented, industry-leading 3D Face Authentication software anchors digital identity, creating a chain of trust from user onboarding to ongoing authentication on all modern smart devices and webcams. FaceTec’s 3D FaceMaps™ make trusted, remote identity verification finally possible. As the only technology backed by a persistent spoof bounty program and NIST/iBeta Certified Liveness Detection, FaceTec is the global standard for Liveness and 3D Face Matching with millions of users on six continents in financial services, border security, transportation, blockchain, e-voting, social networks, online dating and more. www.facetec.com

FACEPHI is a global leader in Facial Recognition technology and in Mobile Biometrics technologies. With a strong concentration in the financial sector, FacePhi’s product is rapidly becoming a service used by banks all over the world. Its implementation doesn’t just save money, it is also a way to attract clients and build loyalty, while increasing the security of transactions for both the customer and the business. To learn more about FacePhi, visit https://www.facephi.com/en/

Recent Posts

  • MDL, Digital ID Gain Momentum in State Efforts
  • Brazil-based Selfie Onboarding Startup Reports 250% Sales Jump, Global Expansion
  • ‘All Partners Remain Committed’ to Digital Travel ID Project: Transport Canada
  • North Carolina DMV Seeks Political Support for MDL
  • The Road Ahead for Biometrics and Identity Online Summit

Footer

  • About Us
  • Company Directory
  • Advertise With Us
  • Contact Us
  • Privacy Policy
  • Terms of Use
  • Archives
  • CCPA: Do not sell my personal info.

Follow Us

Copyright © 2023 MobileIDWorld