Skip to main content

20 Samsung SmartThings Hub vulnerabilities jeopardized smart homes

Cisco’s Talos cybersecurity experts reported 20 vulnerabilities in the Samsung SmartThings Hub. Talos didn’t publicize the widespread weaknesses until after Samsung readied a firmware update for SmartThings customers.

The Samsung SmartThings Hub plays a central role for other SmartThings components including thermostats, cameras, light bulbs, smart plugs, motion detectors and more.

Recommended Videos

The threat also extended beyond Samsung’s smart home devices. The SmartThings Hub runs on Linux-based firmware that enables interoperability with other Internet of Things (IoT) smart home devices via Ethernet, Zigbee, Z-Wave, and Bluetooth connections. In other words, anyone who exploited the Hub’s weaknesses could potentially control all connected electronic devices in the home.

Other smart home vulnerabilities

Talos cybersecurity experts noted, “In total, Talos found 20 vulnerabilities in the Samsung SmartThings Hub. These vulnerabilities vary in the level of access required by an attacker to exploit them and the level of access they give an attacker. In isolation, some of these might be hard to exploit, but together they can be combined into a significant attack on the device.”

Some of the potential threat scenarios exposed because of the Hub vulnerability include:

  • Unlocking doors protected with smart locks
  • Disabling motion detectors and security cameras
  • Damaging appliances connected to smart plugs

Regarding the exploit and the subsequent firmware update, Samsung responded by email to GearBrain, “Samsung takes security very seriously, and our products and services are designed with security as a priority. We are aware of the security vulnerabilities for SmartThings Hub V2 and released a patch for the automatic update to address the issue. All active SmartThings Hub V2 devices in the market are updated to-date.”

How to check your Samsung SmartThings Hub firmware version

Samsung pushes out over-the-air (OTA) software and firmware updates to active devices, but it’s always a good idea to check on your own to confirm that nothing interfered with the update.

You can check your SmartThings Hub’s firmware version in three ways: The SmartThings mobile app, the SmartThings Classic app, and the SmartThings web console.

Once you have opened either of the apps or logged in to the website, click on Hub or Hubs and then check the Firmware Version field.

Bruce Brown
Bruce Brown Contributing Editor   As a Contributing Editor to the Auto teams at Digital Trends and TheManual.com, Bruce…
This app turns your Apple Watch into a Mac and smart home gesture hub
Wow Mouse app for Mac click and gesture control.

Just about a year ago, a startup named DoublePoint launched a gesture control app that lets smartwatch users control phones, tablets, and headsets, among other devices. The Apple Watch has finally received its own version.

In the lead-up to CES 2025, Doublepoint introduced the WowMouse app for Apple Watch, which boasts a few algorithmic refinements and a partnership with Bosch. The app’s Android version has already raked in over 100,000 downloads, says the company.

Read more
These buttons and dials offer a unique way to access your smart home
The Flic Smart Button on a table.

One of the major pain points of the modern smart home is its digital nature. Whether it’s controlling your smart lights, robot vacuum, smart lock, or thermostat, there’s a good chance you’re using a smartphone for most of your interactions. That makes it less than ideal for other members of the household -- or even guests -- to make changes to your setup. This is where Flic comes into play, as the company offers a lineup of physical buttons and dials so everyone can use your favorite smart devices without the need for a digital interface.

I’ve been testing out both the Flic Smart Buttons and Flic Twist, and while they lack certain functionalities, they’re bound to be a fun addition to most smart homes. That’s especially true if you use Alexa or HomeKit, as both platforms work with the innovative smart buttons.
The Flic app makes setup a breeze

Read more
Host a flawless Thanksgiving with these smart home tips
Philips Hue Smart Dimmable LED Smart Light Recipe Kit lifestyle

Thanksgiving is just around the corner, and if you’re worried about hosting a great party this year, know that your smart home is here to help. We’ve pulled together some simple ways your smart home can be optimized to help you host a flawless Thanksgiving. From building a cozy atmosphere with smart lights to setting Quick Replies on your video doorbell, here’s a look at how your smart home can help throw a stress-free Thanksgiving.
Create a temporary smart lock password

Many smart locks allow you to program temporary passcodes -- and this is an incredibly useful feature when you're hosting. Instead of telling all your guests your permanent passcode, you can create a temporary code that’ll only work on Thanksgiving. This ensures your friends and family can let themselves inside your home if you’re busy without giving them free rein to barge in other times of the year. We’ve put together a comprehensive guide on how to create temporary codes on the Yale Assure Lock 2, but you’ll find a similar process available for most other smart locks.
Use Quick Replies on your video doorbell

Read more