Apple Fixed iOS 11.2 Vulnerability That Allowed Unauthorized Access to HomeKit Devices

Discussion in 'MacRumors.com News Discussion' started by MacRumors, Dec 7, 2017 at 1:42 PM.

  1. alexhardaker macrumors newbie

    Joined:
    Sep 12, 2014
    #26
    I do too. He should have stayed at Apple and not got asked to leave. It really does show
     
  2. Glideslope Suspended

    Glideslope

    Joined:
    Dec 7, 2007
    Location:
    A quiet place somewhere in NYS.
    #27
    Yup. The Walled Garden would be full of green. Not the current brown.:apple:
     
  3. Sefstah macrumors 6502

    Joined:
    Dec 21, 2015
  4. Glideslope Suspended

    Glideslope

    Joined:
    Dec 7, 2007
    Location:
    A quiet place somewhere in NYS.
    #29
    He was not asked. He was shown the door by Timmy in a very nasty internal power play. :apple:
     
  5. avanpelt macrumors 68030

    Joined:
    Jun 2, 2010
    #30
    For all the people saying “No HomeKit, no buy” because of HomeKit’s top-notch security, just keep this incident in mind. There are almost surely other security holes lurking in the code just as there are in virtually every software. Apple needs to do some serious self-examination after the macOS and iOS bugs of late. Having 10 or 15 public betas is not a replacement for doing thorough, in-house code reviews and testing.
     
  6. cdavis11 macrumors 6502

    Joined:
    Aug 31, 2009
    #31
    It's within the Home app, so iOS. I have it set up to stop notifications of door unlock and lock if either my wife or myself is home.
     
  7. alexhardaker macrumors newbie

    Joined:
    Sep 12, 2014
    #32
    Working in collaboration, or whatever TC wanted to do, clearly isn’t working... at the very least I am hoping that this is just a phase they’re going through. They need him back otherwise. They need a perfectionist.
     
  8. Tech198 macrumors G4

    Joined:
    Mar 21, 2011
    Location:
    Australia, Perth
    #33
    Well... I guess it was bound to happen to Apple eventually... I wasan't hoping for this attack, anything connected as a central, u kind of think everyone else seems to have has issues in some shape/form, BUT Apple.
     
  9. bbednarz57, Dec 7, 2017 at 3:09 PM
    Last edited: Dec 7, 2017 at 3:18 PM

    bbednarz57 macrumors member

    bbednarz57

    Joined:
    Jun 25, 2015
    #34
    No security hole is a good security hole, but this is the first time in what 3? years that a hole has been found and the article says that it was difficult to execute. Couple that with the fact that it was patched before it was widely known about and it just becomes a very low concern for me personally.

    How many home invaders are going to know about and be able to execute this kind of exploit when they can simply kick the door down or use some other physical approach to get access?
     
  10. wrassmussen macrumors newbie

    Joined:
    Jan 8, 2013
    #35
    Oh, it does...just not the kind it used to have and wishes it had.
     
  11. 2013.1 macrumors regular

    2013.1

    Joined:
    Aug 28, 2014
    #36
    I didn’t know that there is an Apple server side to home kit.

    It had a security issue whit door locks and stuff.

    Creepy that.
     
  12. ziggie216 macrumors 6502

    Joined:
    Jul 14, 2008
    #37
    at what point do you even think that complex code is ever bug free
     
  13. calzon65, Dec 7, 2017 at 3:33 PM
    Last edited: Dec 7, 2017 at 8:43 PM

    calzon65 macrumors 6502

    calzon65

    Joined:
    Jul 16, 2008
    #38
    Apple's policy to rush out new versions of IOS each year is pathetic. Their quality control is complete garbage and before someone says, well IOS is a complex operating system having to support both current and many legacy devices ... I don't give a damn.

    Apple used to stand for quality, but IOS has become a bloated operating system where the hype is always about new emojis. Apple needs to get off the annual release of major IOS versions and concentrate on efficiency and bug fixes.
     
  14. vipergts2207 macrumors 65816

    vipergts2207

    Joined:
    Apr 7, 2009
    Location:
    Columbus, OH
    #39
    For me it's not so much the security that makes HomeKit a must, but the fact that I'm well embedded in the Apple ecosystem. Additionally, pretty much no security is impenetrable and I still trust Apple more on that front that Google or Amazon.
     
  15. mariusignorello macrumors 65816

    Joined:
    Jun 9, 2013
    #40
    Yep, garage doors and alarm system.
     
  16. mistasopz macrumors regular

    Joined:
    Apr 14, 2006
    #41
    I'm baffled how people can leave the security of their house, valuables, and loved ones in the hands of Apple software. Based on all the exploits going on lately, I wouldn't be surprised if just automatically let a stranger into your home and then pointed them to the valuables.
     
  17. bbednarz57 macrumors member

    bbednarz57

    Joined:
    Jun 25, 2015
    #42
    I mean most trust their home security to a small steel lock that really isn't all that difficult to bypass... How is this any easier than that to "hack"?
     
  18. B4U macrumors 65816

    B4U

    Joined:
    Oct 11, 2012
    #43
    I am not optimistic about this is being a "phase"...
     
  19. Altis macrumors 68020

    Joined:
    Sep 10, 2013
    #44
    It still does, just a different reputation now.
     
  20. libertysat macrumors regular

    Joined:
    Nov 10, 2010
    #45
    I have several iHome IP switches for cameras and lights.
    I am unable to control them remotely now.
    I have to be on my home LAN
     
  21. SAIRUS macrumors 6502a

    Joined:
    Aug 21, 2008
    #46
    We will restore functionality as soon we know it will break something else.
     
  22. scrapesleon macrumors regular

    scrapesleon

    Joined:
    Mar 30, 2017
    Location:
    Jamaica
    #47
    Did you say another software update next week I’m getting tired
     
  23. PhillyGuy72 macrumors 6502a

    PhillyGuy72

    Joined:
    Sep 13, 2014
    Location:
    Philadelphia, PA USA
    #48
    ....after all these security bugs...heck bugs in general, you really think I'll sign up and try Apple Pay?
     
  24. mariusignorello macrumors 65816

    Joined:
    Jun 9, 2013
    #49
    I’m baffled at the fact that we haven’t been blown back into the stone age with software engineering lately. This is not specific to Apple. Stems all the way down from a company that doesn’t care to the employee who hates their job. Apple seems to be on a higher level than most, though. I think a change of attitude and mindset are what’s needed to fix security on all fronts.
     
  25. goobot macrumors 603

    goobot

    Joined:
    Jun 26, 2009
    Location:
    long island NY
    #50
    Apple needs to higher more software developers
     

Share This Page