Slashdot Mirror

← Back to Stories (view on slashdot.org)

Keurig 2.0 Genuine K-Cup Spoofing Vulnerability

Posted by ryuzaki0 on from the if-only-this-worked-for-ink-jet-cartridges dept.

An anonymous reader writes A security researcher has released a humorous vulnerability description for the Keurig 2.0 coffee maker, which includes DRM designed to only brew Keurig brand coffe pods (K-Cups): "Keurig 2.0 Coffee Maker contains a vulnerability in which the authenticity of coffee pods, known as K-Cups, uses weak verification methods, which are subject to a spoofing attack through re-use of a previously verified K-Cup." The vulnerability description even includes mitigating controls, such as keeping the Keurig in a locked cabinet when not in use. Also at Hackaday.

3 of 270 comments (clear)

  1. Re:Holy Fuck! by Githaron · · Score: 4, Interesting

    Apparently, they are using a propietary ink: http://www.consumeraffairs.com... rather than RFID.

  2. Re:Someone has by 50000BTU_barbecue · · Score: 4, Interesting

    Here in Montreal some dude has a mushroom growing kit that grows on a bag filled with coffee grounds. They were the most intensely flavored mushrooms I ever tasted. I was like getting hit in the face by a boxing glove made of mushrooms.

    --
    Mostly random stuff.
  3. Re:This could lead to death by Jason+Levine · · Score: 4, Interesting

    Even worse, they might brew the coffee with (*gasp*) Dihydrogren Monoxide!!!

    --
    My sci-fi novel, Ghost Thief, is now available from Amazon.com.