Researchers are warning that unpatched flaws found in the Hickory Smart Bluetooth Enabled Deadbolt allow an attacker with access to a victim’s phone to break into their houses.
Researchers have uncovered vulnerabilities in a popular smart deadbolt could allow attackers to remotely unlock doors and break into homes. Making matters worse, the smart door lock manufacturer has not yet acknowledged nor fixed the flaws.
The six vulnerabilities exist in the Hickory Smart Bluetooth Enabled Deadbolt, manufactured by Hickory Hardware, which enables users to remotely lock their homes via a mobile app on their Android or iPhone handset. The vulnerabilities are medium severity as some level of access to an already compromised mobile device is required for exploitation – however, once an attacker accesses a victim’s phone, they can easily exploit the flaws to remotely unlock the deadlock from the mobile app.
“This, in turn, may present a physical risk to the people and property protected by these locks,” said Tod Beardsley with Rapid7 in a Thursday analysis. “As of the initial release of this vulnerability disclosure, the vendor has not acknowledged these vulnerabilities, nor has it offered a software update to address these issues.”
.
.
.
.
Please read on here -> Link to original and complete Article