Researchers successfully infiltrated networks through a vulnerability in Philips Hue light bulbs. The CVE-2020-6007 vulnerability, which involves the ZigBee communication protocol, can be abused to remotely install malicious firmware in smart light bulbs and spread malware to other internet-of-things (IoT) devices.
To make the discovery, Check Point researchers built on earlier studies that showed how to control smart light bulbs. The new finding focused on the how this control can be exploited to hack other devices.
Source: Trend Micro