WHEN AMAZON LAUNCHED[sic] its Amazon Key service last month, it also offered a remedy for anyone—realistically, most people—who might be creeped out that the service gives random strangers unfettered access to your home. That security antidote? An internet-enabled camera called Cloud Cam, designed to sit opposite your door and reassuringly record every Amazon Key delivery.
But now security researchers have demonstrated that with a simple program run from any computer in Wi-Fi range, that camera can be not only disabled but frozen. A viewer watching its live or recorded stream sees only a closed door, even as their actual door is opened and someone slips inside. That attack would potentially enable rogue delivery people to stealthily steal from Amazon customers, or otherwise invade their inner sanctum.
Source: https://www.wired.com/story/amazon-key-flaw-let-deliverymen-disable-your-camera/
Previously: Walmart Wants to Deliver Groceries Directly Into Your Fridge
Amazon Wants to Deliver Purchases into Your Home
(Score: 2) by Nuke on Saturday November 18 2017, @11:03PM
Going down the route of the Amazon Key is only embarking on a security versus hacking arms race that will never end. Why bother?
I have a large mail box near my front gate with a combination lock on it; I include the combination number on my delivery address. It works well. I'm sure that someone could hack the combination, but they have not tried yet, the time at risk for significant content is only on average about four hours per week, and it contains only limited content and is not my entire house. Valuable deliveries generally require a sigature anyway.
Another poster mentioned the whole box possibly being stolen, but they would need an angle grinder to steal mine so I don't think they'd bother.