[Article] Your Philips Hue light bulbs can still be hacked

From the verge:


A couple of years ago, I read another paper explaining the vulnerabilities in Touch Link joining.

The part I found really interesting was how long the security key stays visible for the different brands tested.



Here is another article:

The issue is two fold, adding hacked firmware to the bulb and then taking over the hub though a buffer overflow exploit. The hacked firmware is a ZibBee issue and the buffer overflow issue is due to the applications running on the hub. Amazing how these things proliferate.

1 Like

Any word on whether or not the HE hub is vulnerable to this attack?