Introducing Amazon Key...Let Amazon deliver into your home

[winb83]

Introducing - Amazon Key




Yeah...don't trust'em that much.

The package thing should be fine as there's a camera by the door.

 

[Mowgli]

I guess thats how clowns will deliver their dildos and dikk pumps

 

[Rekkapryde]

Get shot brehs

 

[Barnett114]

 

[Michael's Black Son]

I would let the chick in the video suck me off. thats about it. fukk all this voluntary home invasion shyt

 

[Hersh]

tough sale/sell lol.. but the first person that gets fukked with this will eat

 

[Black Bolt]

They got your fingerprints, face id, 'voice assistants' tracking your every word at home, now a live cam and access to your front door at all times

I'm keeping this tinfoil hat on if that's alright...

 

[Morose Polymath]

Desus & Mero went in on this shyt

 

[CookisaCac]

I been doing this

 

[Mensch Fontana]

Introducing - Amazon Key




Yeah...don't trust'em that much.

bytch got money to buy a smart lock web cam and order a cleaning service, but cant buy a fukken couch

 

[richaveli83]

Amazon doing to much.

 

[Deltron]

Amazon Key exploit allows couriers to re-enter your home | KitGuru

Last month, Amazon announced its unusual new scheme that allows couriers to enter its customer’s homes in order to deliver parcels. While the company managed to quell many security concerns with Amazon Key, it turns out there’s one fatal flaw that could allow the same courier to re-enter your home unbeknown to you.

The system itself relies on communication of apps and Amazon’s Cloud Cam to ensure enough precautions are taken that customers feel safe enough to use the service. Specifically, the user will get email notifications when the parcel is on the way, when the driver has arrived and as the driver enters the code to unlock your door. The cam will be prompted on that second step, making sure to record the driver as they unload the delivery until they leave the premises entirely.

It all sounds safe and secure, until security researchers came across an exploit that allows the camera to be disabled and frozen by a third party application. The Wire reports that this program can be opened from a device within WiFi range, giving video footage of a closed door despite that not being the case.

“The camera is very much something Amazon is relying on in pitching the security of this as a safe solution,” Rhino Labs founder Benjamin Caudill told Wired. “Disabling that camera on command is a pretty powerful capability when you’re talking about environments where you’re relying heavily on that being a critical safety mechanism.”

Caudill replicated the DoS attack to showcase exactly what could happen with such a vulnerable security flaw. The parcel is delivered as expected, so as to not raise any suspicion, however once the program is run, the courier has the ability to re-enter the home without notifying the Cloud Cam or the history of authorised unlocks.

This exploit isn’t just in the hands of Amazon couriers, mind you, as anyone that knows about the exploit could spot or wait for a delivery to then execute the deauthorisation command.

Amazon has directly responded to this vulnerability, stating that Amazon Key users will be notified if the Cloud Cam goes offline for a prolonged period of time. “Later this week we will deploy an update to more quickly provide notifications if the camera goes offline during delivery,” read a statement made to Wired. “Every delivery driver passes a comprehensive background check that is verified by Amazon before they can make in-home deliveries, every delivery is connected to a specific driver, and before we unlock the door for a delivery, Amazon verifies that the correct driver is at the right address, at the intended time.”

that was quick.

 

[El Bajo Negro]

Not in a million years