Futhi iqiniso ukuthi akekho umuntu okhululekile ekuhlaselweni "ngabaduni" njengoba lezi zindaba zibonisa, lapho kuvezwa ubungozi. kuthinta ngqo inqubo yokuxhumana yeZigbee esetshenziswa ama-Philips Hue bulbs namanye amadivayisi asekhaya ahlakaniphile afana ne-Honeywell thermostats, i-Bosch Security Systems, i-Ikea Tradfri, i-Samsung SmartThings, i-Amazon Ring, i-Xfinity Box nezinye eziningi.
Kulokhu inkinga ukuthi umuntu wangaphandle angalawula ama-bulb ethu, ashintshe umbala, ukukhanya noma awacishe noma awacishe ngaphandle kokuthi sikwazi ukwenza noma yini ukukuvimbela. Lokhu kuba sengozini kutholwe yi- Hlola abacwaningi bezokuphepha kwePhoyinti.
Abasebenzisi abanalolu hlobo lomkhiqizo wePhilips bangaqiniseka ukuthi inkampani ixwayisiwe ngale nkinga futhi yayisombulula ngokuvuselelwa, yize kuliqiniso ukuthi sabona inkinga esikhathini esithile esidlule. ne-hardware yamanye ama-bulb (ezazithonywe yilokhu kuhlaselwa ngo-2016) nokuthi kuleso senzakalo ayikwazanga ukuxazululwa ngokuvuselelwa, yize kufanele futhi kuthiwe ayinakusakazeka kuwo wonke amanye amadivayisi avela ebhulohweni njengoba bekunjalo ngalokhu kusengozini okusha okuhlolwa kuma-bulb, ngakho-ke kuzothinta kuphela lolu hlobo oluthile lwama-bulb.
Lokhu akuyona inkinga ye-Philips, kuyinkinga yokuthola ukufinyelela kwebhuloho, kepha abasebenzisi baselulekwa ukuthi bahlole uhlelo lokusebenza lwePhilips Hue ukuthola izibuyekezo. etholakalayo nokuthi uma kwenzeka bethola eyodwa, ifake ngokushesha okukhulu. Kwenzeka okufanayo ngawo wonke amadivayisi axhunywe kuZigbee. U-Yaniv Balmas uqobo, iNhloko Yezocwaningo e-Check Point Research, wachaza:
Abaningi bethu bayazi ukuthi amadivayisi we-IoT angaba yingozi kwezokuphepha, kepha lolu cwaningo lukhombisa ukuthi amadivayisi angajwayelekile futhi abonakala "eyizimungulu", angaxhashazwa kanjani ngabaduni futhi asetshenziselwe ukuphatha amanethiwekhi.noma ukufaka i-malware . Kubalulekile ukuthi amabhizinisi nabasebenzisi bazivikele kulokhu kuhlaselwa ngokuvuselela amadivayisi abo ngezimagqabhagqabha zakamuva futhi bazihlukanise namanye amadivayisi axhunyiwe kumanethiwekhi abo ukukhawulela ukusabalala okungaba khona kwe-malware. Namuhla kunezinhlobo eziningi zokuhlaselwa kwe-cyber ngakho-ke asikwazi ukudlula ukuphepha kwanoma yini exhunywe kwinethiwekhi yethu.
Ngokwengxenye yakhe lAbaphathi bePhilips Hue babonge abacwaningi baseCheck Point ngomsebenzi wabo futhi ngaphezu kwakho konke ngokubayala ngalesi sengozini (i-CVE-2020-6007) ngaphambi kokuyethula esidlangalaleni nokudala ukwesaba noma inkinga enkampanini.