EUVD-2017-8041

Malware in sbrugna...

Amazon Key Weakness Vulnerability

Amazon Key is a smart lock service from Amazon USA. A security vulnerability exists in Amazon Key 2017-11-16 and earlier versions. An attacker could use the vulnerability to freeze the camera feed...

Vulnerability in Amazon Key

Amazon Key is an IoT door lock that can enable one-time access codes for delivery people. To further secure that system, Amazon sells Cloud Cam, a camera that watches the door to ensure that delivery people don't abuse their one-time access privilege. Cloud Cam has been hacked: But now security...

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

CVE-2017-16867

Amazon Key through 2017-11-16 mishandles Cloud Cam 802.11 deauthentication frames during the delivery process, which makes it easier for 1 delivery drivers to freeze a camera and re-enter a house for unfilmed activities or 2 attackers to freeze a camera and enter a house if a delivery driver fail...

CVE-2017-16867

Amazon Key through 2017-11-16 mishandles Cloud Cam 802.11 deauthentication frames during the delivery process, which makes it easier for 1 delivery drivers to freeze a camera and re-enter a house for unfilmed activities or 2 attackers to freeze a camera and enter a house if a delivery driver fail...

CVE-2017-16867

The CVE-2017-16867 entry describes Amazon Key’s Cloud Cam mishandling 802.11 deauthentication frames during delivery, allowing a camera to be frozen and an interior entry under two scenarios. Affected: Cloud Cam devices used with Amazon Key up to 2017-11-16. Root cause: mishandling of deauth fram...