According to security researchers, internet-connected light bulbs made by Orsam have been detected vulnerable to hacking. The defect in the light bulbs could give hackers access to home wifi network and operate the lights without permission.
The researchers have found nine vulnerabilities, which will be fixed with a software update in August, while four will still remain unpatched.
According to a security expert, the company has made an elementary mistake. The lightbulb range features internet-connected light bulbs that can be controlled using a smartphone app.
One of the issues with the Orsam lightbulb was its mobile app, which stored an unencrypted copy of the user’s wifi password, which could give an attacker access to a user's home wi-fi network and the devices connected to it
Another flaw could let an attacker compromise the light bulbs and switch them on or off without permission.
Osram said in a statement: "Since being notified about the vulnerabilities identified by Rapid7, Osram has taken actions to analyse, validate and implement a risk-based remediation strategy.
