The vulnerability exists in the August smart lock Pro + Connect model which hasn’t been fixed despite continuous alerts from Bitdefender security researchers to the vendor.
There is no doubt technology has made our lives easier, but it has also made us vulnerable to cyber-attacks. Seemingly, the Bitdefender IoT vulnerability research team has discovered a vulnerability (CVE-2019-17098) in the August Smart lock pro + connect, that if exploited can provide threat actors full access to your Wi-Fi network.
Packed with spiffy and innovative features, August Smart lock pro + connect allows users to control their home’s main door or elsewhere. This includes the owner to unlock/lock the door with just a tap, grant access to guests, and also supervise who enters or leaves their house amongst other features.
This is why smart locks as such are a huge hit in the rental business. There is no hassle to exchange keys or be concerned about manual locks being broken into. But despite being one of the best sellers in the physical security context, August smart lock Pro + Connect falls invariably short.
See: Hackers Infect Hotel Door Lock System with Ransomware
The device in question cannot directly connect to the internet be it wireless or wired, as it lacks the necessary hardware. So, when the user is within the range the lock can be controlled via Bluetooth Low Energy ( smart vulnerability hackers access network
