Zac Hall of 9to5Mac discovered a vulnerability in HomeKit, Apple’s home automation framework, that could allow unauthorized control of accessories like smart locks and garage door openers. The good news is that Apple has already closed the security hole on the server side, so your devices are no longer vulnerable. Unfortunately, Apple’s server-side fix also prevents you from giving remote access to shared users. A future update to iOS should eliminate the vulnerability and restore full functionality.
Subscribe today so you don’t miss any TidBITS articles!
Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For over 31 years, we’ve published professional, member-supported tech journalism that makes you smarter.
Registration confirmation will be emailed to you.