The HomeKit vulnerability, which Apple was exposed earlier this month, has been fixed, but a name has been given
Khaos Tian
Of developers after updating the system found that although Apple did fix some of the problems mentioned in some previous reports, it also made the attack easier.
Khaos Tian first discovered the problem with Apple on October 28th and reported it to Apple's security department the next day when Apple said it would launch an investigation in November but the developer sent a lot of follow-up E-mail did not receive a reply.
The developer said that the Apple HomeKit vulnerability contains two issues. Although in theory anyone can not find the HomeKit device ID, two bugs allow an attacker to find it without any authorization. In addition, The three directions send instructions to the HomeKit device, which HomeKit will simply pass without any authentication, though Khaostian emphasizes that the biggest problem is that Apple's response is too slow.
Earlier this month, Apple introduced an update to address security vulnerabilities in the iOS that were allegedly compromised by third-party access to HomeKit devices, which also include smart locks that are most important to home security.