In a post to the Bugtraq mailing list, Craig Wright says he’s hacked his Jura F90 Coffee maker with the Jura Internet Connection Kit. Not sure if this hack has been fully verified by a third party, but someone definitely has a lot of time on their hands. Turns out, the machine’s operating system contains a few vulnerabilities that don’t appear to be patchable, according to Wright’s post. So what can you do with a hacked machine?
1. Change the preset coffee settings (make weak or strong coffee) 2. Change the amount of water per cup (say 300ml for a short black) and make a puddle 3. Break it by engineering settings that are not compatible (and making it require a service)
There’s a more detailed look at the Jura F90 vulnerability in a follow-up Bugtraq post from Wright as well as a reply asking if he has brought this to the attention of the manufacturer directly, which is usually the protocol before sharing such details. No answer from Wright on the latter, but he does point out in his second post that:
At the moment as I think there are so few people as crazy as I am who actually have to have a gadget just as it is Internet connected; this is not likely to become a widespread attack vector.
In other words, it’s not like he’s disclosing a newly discovered bug in Windows. This would be fun to do at the office if one could permanently set our coffee system’s display language to French so that “Infusion” would appear on the readout when coffee is being brewed.




