Hackers can hijack your Bosch Thermostat and Install Malware

Bitdefender Labs has identified cybersecurity vulnerabilities in Bosch’s BCC100 thermostat model. The flaws could enable remote attackers to manipulate thermostat settings, access data and install malware. The vulnerabilities were discovered on August 29, 2023, but only published on January 11, 2024. They allow attackers to replace device firmware with a rogue version. Bitdefender Labs advises users to follow necessary security practices to manage this risk.