Apple said that it has issued a fix for HomeKit Security flaw, which had left devices vulnerable to unauthorized third-party access. The tech giant fixed a bug which enabled outside parties to access smart lock and garage doors.
“The issue affecting HomeKit users running iOS 11.2 has been fixed,” said an Apple spokesperson in a statement. “The fix temporarily disables remote access to shared users, which will be restored in a software update early next week.”
The flaw in iOS software exposed key connected home hardware for unauthorized access. The flaw was first spotted by 9to5Mac, which was later confirmed by Apple.
The initial report noted that the vulnerability needed at least one iPhone or iPad on iOS 11.2 linked to iCloud account of HomeKit user. However, the vulnerability did not impact earlier versions of the operating system. But it raised concerns about smart home functionality as users connect more devices to ecosystem such as HomeKit, Alexa, and others.
Apple successfully fixed couple of bugs in iOS and macOS in the recent weeks, causing minimal trouble to users. Recently, cyber security experts brought a major password glitch to Apple’s notice, on which, the company said it will fix the issue in the next update.
The fix was a server-side update, which implies that end users does not need to update anything. For now, users with 11.2 cannot have remote HomeKit functionality until Apple releases an update next week. Users need to install the update to restore HomeKit functionality.