Mark recently installed an automated home lighting system through Insteon that he can control with his smartphone, and it's been working fine. However, he recently became concerned when he realized he could get right into the web interface with no password just by browsing to that port. Leo says this sounds like an exploit and is the fault of Insteon. Leo advises emailing Insteon to notify them of this security hole. He should also keep this lighting controller up to date if they do release a fix.