Your new post is loading...
Amazon Key Lets Delivery People into Your House—and It Just Got Hacked.
A hardware safeguard in Amazon’s recently launched while-you’re-out delivery service turns out to have a big hole. And, well—let’s just say you probably should have seen this coming.
Amazon Key uses a smart lock and cloud-based security camera in order to allow delivery staff to drop parcels inside a home while a customer is out. The driver requests access via Amazon, but the customer can watch footage from Amazon’s Cloud Cam to keep a watchful eye over the proceedings—a nice way of inspiring confidence that said driver won’t steal all your stuff. All that convenience, for a mere $250!
There’s just one problem: as Wired reports, researchers from Rhino Security Labs have demonstrated that it’s possible for someone in Wi-Fi range of the Cloud Cam to send it commands that knock it offline. That’s discomforting, but not awful—because at least you’d see that the camera was offline and do something about it, right?
Nope! Like something out of Ocean’s Eleven, the camera doesn’t show the customer that it’s offline: it just shows the last frame, frozen, so the scene looks totally normal. Meanwhile, someone could be rifling through your cupboards, eating your Cheerios, or (more likely) stealing your TV.
It’s worth noting that Amazon only allows authorized staff to open the smart lock that forms part of the system, so it would require a rogue employee for this to happen. The firm also provides insurance if anything does go wrong. And it now says it will update its software so that users are alerted if the camera goes offline during delivery.
But the news should be a warning call, if one were needed, that the intersection of smart devices, home security, while-you’re-out deliveries, and Big Tech is a combination people should be genuinely nervous about. Not least because, currently, smart devices are about as secure as the Democratic National Committee’s servers, and breaking into homes remains an attractive proposition for any sane criminal.
Learn more / En savoir plus / Mehr erfahren:
https://www.scoop.it/t/securite-pc-et-internet/?&tag=cameras
Amazon Key Lets Delivery People into Your House—and It Just Got Hacked.
A hardware safeguard in Amazon’s recently launched while-you’re-out delivery service turns out to have a big hole. And, well—let’s just say you probably should have seen this coming.
Amazon Key uses a smart lock and cloud-based security camera in order to allow delivery staff to drop parcels inside a home while a customer is out. The driver requests access via Amazon, but the customer can watch footage from Amazon’s Cloud Cam to keep a watchful eye over the proceedings—a nice way of inspiring confidence that said driver won’t steal all your stuff. All that convenience, for a mere $250!
There’s just one problem: as Wired reports, researchers from Rhino Security Labs have demonstrated that it’s possible for someone in Wi-Fi range of the Cloud Cam to send it commands that knock it offline. That’s discomforting, but not awful—because at least you’d see that the camera was offline and do something about it, right?
Nope! Like something out of Ocean’s Eleven, the camera doesn’t show the customer that it’s offline: it just shows the last frame, frozen, so the scene looks totally normal. Meanwhile, someone could be rifling through your cupboards, eating your Cheerios, or (more likely) stealing your TV.
It’s worth noting that Amazon only allows authorized staff to open the smart lock that forms part of the system, so it would require a rogue employee for this to happen. The firm also provides insurance if anything does go wrong. And it now says it will update its software so that users are alerted if the camera goes offline during delivery.
But the news should be a warning call, if one were needed, that the intersection of smart devices, home security, while-you’re-out deliveries, and Big Tech is a combination people should be genuinely nervous about. Not least because, currently, smart devices are about as secure as the Democratic National Committee’s servers, and breaking into homes remains an attractive proposition for any sane criminal.
Learn more / En savoir plus / Mehr erfahren:
https://www.scoop.it/t/securite-pc-et-internet/?&tag=cameras