Slashdot Mirror

← Back to Stories (view on slashdot.org)

Keurig 2.0 Genuine K-Cup Spoofing Vulnerability

Posted by ryuzaki0 on from the if-only-this-worked-for-ink-jet-cartridges dept.

An anonymous reader writes A security researcher has released a humorous vulnerability description for the Keurig 2.0 coffee maker, which includes DRM designed to only brew Keurig brand coffe pods (K-Cups): "Keurig 2.0 Coffee Maker contains a vulnerability in which the authenticity of coffee pods, known as K-Cups, uses weak verification methods, which are subject to a spoofing attack through re-use of a previously verified K-Cup." The vulnerability description even includes mitigating controls, such as keeping the Keurig in a locked cabinet when not in use. Also at Hackaday.

14 of 270 comments (clear)

  1. Holy Fuck! by d33tah · · Score: 4, Funny

    Holy fuck! These pirated K-Cups are going to hurt the whole industry!

    1. Re:Holy Fuck! by ThePhilips · · Score: 3, Funny

      And the poor customers gets duped into buying a counterfeit pods without even realizing it!

      That must be stopped!

      Think of the customers!!

      --
      All hope abandon ye who enter here.
    2. Re:Holy Fuck! by schlachter · · Score: 5, Funny

      when the little needle in the Keurig device comes down and punctures the spoofed k-cup, it will surely execute an Java injection attack.

      --
      My God can beat up your God. Just kidding...don't take offense. I know there's no God.
    3. Re:Holy Fuck! by ChrisMaple · · Score: 2, Funny

      Most pirates are male. From among the females, I'd certainly like to see those with K cups.

      --
      Contribute to civilization: ari.aynrand.org/donate
  2. Nesspresso! by TechyImmigrant · · Score: 5, Funny

    I demand additional ineffective security procedures for my Nespresso machine. I'm completely ineffectively unprotected.

    --
    I should use this sig to advertise my book ISBN-13 : 978-1501515132.
  3. Apparently it's very easy to get around by Russ1642 · · Score: 3, Funny

    I know someone who keeps a genuine k-cup lid around and just sets it on top of the off-brand cup every time he uses his machine.

  4. Re:Someone has by TWX · · Score: 5, Funny

    And here you are, posting on Slashdot...

    --
    Do not look into laser with remaining eye.
  5. K-Cups? by Anonymous Coward · · Score: 5, Funny

    I can only imagine how expensive that must be. The last pair of double-D's set me back a fortune before it was all said and done. Although, they were nice.

  6. Workaround by Ol+Olsoc · · Score: 5, Funny
    Easy to follow steps:

    1. Go to your favorite sore that carries coffee makers

    2. Purchase a drip, french press or percolator, or whatever type I missed as per your wishes.

    3. Buy some coffee at the same store. This may come as a shock to many people, but there is a large variety of typs of coffees out there. Different grinds, or grind your own - it is amazing I tell you, must be something new. Keurig is not the only company out there. I'm partial to a brand roasted in Philly, that I purchase from of all places, a diner in Rio Grande, New Jersey. But I digress.

    Brew your own fucking coffee the way we used to do it when men were men, and the sheep knew to be respectful. Enjoy it on the patio, yelling at kids to get off the lawn.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
  7. This could lead to death by davidwr · · Score: 5, Funny

    A malicious attacker could substitute toxic fake coffee or hot chocolate for the real thing.

    A malicious attacker could also substitute a coffee or hot chocolate that is tainted with a chemical that creates slight etchings in the surface of the coffee cup or other cup used to hold the end product. For certain types of cups, the result will be a cup that will be more likely to harbor bacterial growth than one with a smooth surface. Assuming a successful attack, the risk of illness or fatality is low for a healthy adult but it might be significant for a person with a suppressed or compromised immune system.

    Recommended mitigation:
    Keep people who want to kill you away from your coffee maker.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  8. Let's counter-balance that free Keurig ad a little by ArcadeMan · · Score: 4, Funny

    Tassimo
    Nespresso

    --
    Get free satoshi (Bitcoin) and Dogecoins
  9. It's a Java vunerability by schlachter · · Score: 5, Funny

    in the Java run time environment

    --
    My God can beat up your God. Just kidding...don't take offense. I know there's no God.
  10. Re:Someone has by ganjadude · · Score: 5, Funny

    I was like getting hit in the face by a boxing glove made of mushrooms.

    Sounds like they were some pretty good mushrooms. were you also at a pink floyd concert by chance?

    --
    have you seen my sig? there are many others like it but none that are the same
  11. Re:These stupid ass one shot coffee makers by Jason+Levine · · Score: 3, Funny

    Would that be a Beowulf Keurig Cluster?

    --
    My sci-fi novel, Ghost Thief, is now available from Amazon.com.