From the verge:
2 Likes
A couple of years ago, I read another paper explaining the vulnerabilities in Touch Link joining.
https://www.researchgate.net/publication/318408908_Insecure_to_the_Touch_Attacking_ZigBee_30_via_Touchlink_Commissioning
The part I found really interesting was how long the security key stays visible for the different brands tested.
3 Likes
Here is another article:
The issue is two fold, adding hacked firmware to the bulb and then taking over the hub though a buffer overflow exploit. The hacked firmware is a ZibBee issue and the buffer overflow issue is due to the applications running on the hub. Amazing how these things proliferate.
1 Like
Any word on whether or not the HE hub is vulnerable to this attack?