Unpatchable KeyWe smart lock can be easily picked - Help Net Security

Unpatchable KeyWe smart lock can be easily picked - Help Net Security

A design flaw in the KeyWe smart lock (GKW-2000D), which is mostly used for remote-controlled entry to private residences, can be exploited by attackers to gain access to the dwellings, F-Secure researchers have found.



To add insult to injury, in this present incarnation the lock can’t receive firmware updates, meaning that the security hole can’t be easily plugged.


About KeyWe smart lock


KeyWe smart lock is developed by the Korean company KeyWe, which raised money for it on Kickstarter.


The lock can be opened via an application (Wi-Fi, Bluetooth), an armband (NFC), through a touchpad (numeric code), or mechanically (with a regular key).


It has additional options like generating one-time guest codes, unlocking the door based on proximity, etc.


About the vulnerability and the attack


F-Secure security consultants acquired the KeyW ..

Support the originator by clicking the read the rest link below.