There's no denying that it's an annoyance to miss a delivery – especially one that's been fast tracked by the premium Amazon Prime service you've paid for. But it'd be a whole lot more annoying if a desire for a speedy delivery led to your home being robbed instead.
That's what's alleged to be a potential hazard of using one of the new Amazon Key security systems. To avoid missed deliveries, the web-connected smart lock gives delivery workers a one-off timed code that can temporarily unlock your property, allowing them to leave your parcel safely indoors without you being present. An included Wi-Fi camera acts as a deterrent for any light-fingered delivery person who may want to make off with your personal items.
However, the integrity of the security system has been called into question by a hacker who has shown that it's possible to manipulate the system so as to give anyone access to an Amazon Key-protected property.
Open-sesame
A hacker known online as "MG" posted the above clip, showing the Amazon Key's security protocols being overriden.
Though MG is withholding the details of how his hack works until Amazon has had an opportunity to address the issue, the video shows the Amazon Key's lock remaining open even when a delivery driver's code has expired.
It appears to take advantage of what's called a "dropbox" – a mobile computer with Wi-Fi connectivity, which can control the key, either finding a way to prevent it from re-locking itself, or simply unlocking it itself.
Amazon has yet to respond to the clip, but it'll need to act fast to reassure those that have already jumped onboard with the security system.
No comments:
Post a Comment