Smart padlock 360lock based on the Ethereum blockchain was opened with a simple Bluetooth attack and a conventional hammer weighing 1 kg. The experiment was conducted by researchers from Pen Test Partners.
The creators of the lock advertised it as “completely tamper-proof”, thanks to the integration of blockchain and “advanced cryptographic codes”
The lock is locked and unlocked via an application that transmits data over a Bluetooth Low Energy connection, and not using a physical key or a combination lock.
Pen Test Partners researcher David Lodge recorded a successful Bluetooth unlock command and then successfully reproduced it.
It follows from this that the lock is vulnerable to replay attacks.
The body of the lock is made of a zinc-based alloy used in various products from zippers to rifle buttocks and cheap jewelry.
The researcher needed only one sledgehammer blow to break the lock.