Thoughtful, detailed coverage of the Mac, iPhone, and iPad, plus the TidBITS Content Network for Apple consultants.

HomeKit Vulnerability Discovered, Already Patched

Zac Hall of 9to5Mac discovered a vulnerability in HomeKit, Apple’s home automation framework, that could allow unauthorized control of accessories like smart locks and garage door openers. The good news is that Apple has already closed the security hole on the server side, so your devices are no longer vulnerable. Unfortunately, Apple’s server-side fix also prevents you from giving remote access to shared users. A future update to iOS should eliminate the vulnerability and restore full functionality.favicon follow link