Please login or register.

Login with username, password and session length

Author Topic: Not-so-Smart Light Bulbs  (Read 1716 times)

dhouston

  • Advanced Member
  • Hero Member
  • ******
  • Helpful Post Rating: 37
  • Posts: 2547
    • davehouston.org
Logged
This message was composed entirely from recycled letters of the alphabet using only renewable, caffeinated energy sources.
No twees, wabbits, chimps or whales died in the process.
https://www.laser.com/dhouston

HA Dave

  • Hero Member
  • *****
  • Helpful Post Rating: 175
  • Posts: 7127
Re: Not-so-Smart Light Bulbs
« Reply #1 on: February 05, 2020, 12:54:08 PM »

Yes. "researchers discovered that they could take control of a Hue light bulb and install malicious firmware."

I've often wondered to what lengths those researchers are willing to go... to find/create those vulnerabilities. There is good money in "discovering" otherwise undiscovered vulnerabilities in closed software code. Then selling solutions to the software owners. I've heard people joke about this being the new modern version of the "Black-hand Fire Insurance" of yesteryear. But... I don't know.

What I do know..... is no Hue light bulb user has ever had malicious code installed via a Hue light bulb.
Logged
Home Automation is an always changing technology

SkipWX10

  • Sr. Member
  • ****
  • Helpful Post Rating: 1
  • Posts: 143
Re: Not-so-Smart Light Bulbs
« Reply #2 on: February 05, 2020, 05:49:30 PM »

To me, the article raises more concerns about Zigbee that Hue, seeing as the hackers use the Zigbee protocol to infect the home/business network...
Logged

HA Dave

  • Hero Member
  • *****
  • Helpful Post Rating: 175
  • Posts: 7127
Re: Not-so-Smart Light Bulbs
« Reply #3 on: February 05, 2020, 08:31:01 PM »

...... seeing as the hackers use the......

What hackers? Where? This was a laboratory experiment. No one hacked anything. Generally these stories break only AFTER the code altering update has already been pushed.
Logged
Home Automation is an always changing technology

brobin

  • Hero Member
  • *****
  • Helpful Post Rating: 160
  • Posts: 1458
Re: Not-so-Smart Light Bulbs
« Reply #4 on: February 05, 2020, 09:16:07 PM »

To me, the article raises more concerns about Zigbee that Hue, seeing as the hackers use the Zigbee protocol to infect the home/business network...
ZigBee devices, by themselves, aren't exposed to the internet any more than X10 is but a cloud based controller would be and that's where the security has to be managed.  https://courses.csail.mit.edu/6.857/2017/project/17.pdf
Logged

dhouston

  • Advanced Member
  • Hero Member
  • ******
  • Helpful Post Rating: 37
  • Posts: 2547
    • davehouston.org
Re: Not-so-Smart Light Bulbs
« Reply #5 on: February 06, 2020, 06:07:15 AM »

To me, the article raises more concerns about Zigbee that Hue, seeing as the hackers use the Zigbee protocol to infect the home/business network...
ZigBee devices, by themselves, aren't exposed to the internet any more than X10 is but a cloud based controller would be and that's where the security has to be managed.  https://courses.csail.mit.edu/6.857/2017/project/17.pdf
Yes and no - Section 5.2 of the cited PDF quotes Zigbee saying the Philips Hue hack was due to...
Quote
an internal implementation error made by Philips
rather than a flaw in the Zigbee standards.
Logged
This message was composed entirely from recycled letters of the alphabet using only renewable, caffeinated energy sources.
No twees, wabbits, chimps or whales died in the process.
https://www.laser.com/dhouston
 

X10.com | About X10 | X10 Security Systems | Cameras| Package Deals
© Copyright 2014-2016 X10.com All rights reserved.