Finding security flaws in DHL Packstation: Hacking it with QR codes and Bluetooth - with a happy ending! π π«π¨ππ²
The paper by security researcher Frederik Reiter was published last week and shares some insights from his research on DHL Packstation. Although there are not many details about the research process itself, the results are impressive.
An attacker can abuse the Packstation process to trick DHL into reporting that a package was sent back to the sender and request a refund - or even try to steal the package from a legitimate user!
And guess what: DHL identified the research (!) activity and reached out to the author (!!) directly! As the author wrote, "Impressive response by DHL," and I couldnβt agree more. Well done, DHL Security team. π
Enjoy the paper, and letβs wait for the video with more technical details.
More details:
DHL Hackstation: What's inside? [PDF]: https://troopers.de/downloads/troopers25/TR25_DHL-Hackstation_S99JKS.pdf
