Welcome To DSD Brands
Supposedly smart connected home locks can be exploited to allow hackers to pick the device with ease, researchers have claimed.
Consultants at the cybersecurity firm F-Secure have discovered an exploitable design flaw in one brand of smart lock that can allow an attacker to easily pick the device.
Since the smart lock itself is unable to receive new firmware updates, the manufacturer can't patch the device to mitigate the flaw leaving users at risk unless they decide to physically uninstall their smart lock.
F-Secure Consulting discovered the flaw in the KeyWe Smart Lock which allows users to open and close doors in their home by using an app on their smartphone. The firm found that they were able to exploit improperly designed communication protocols to intercept the secret passphrase sent between the lock and KeyWe's app