Black Hat 2012 - 4 million hotel rooms at risk
Bad news: With less than $50 of off-the-shelf hardware and a little bit of programming, its possible for a hacker to gain instant, untraceable access to millions of key card-protected hotel rooms.
This hack was demonstrated by Cody Brocious, a Mozilla software developer, at the Black Hat security conference in Las Vegas. At risk are four million hotel rooms secured by Onity programmable key card locks. According to Brocious, who should be scolded for not disclosing the hack to Onity before going public, there is no easy fix: There isnt a firmware upgrade if hotels want to secure their guests, every single lock will have to be changed.
quote: Full article: »www.extremetech.com/computing/13···ntroller
I wish I could say that Brocious spent months on this hack, painstakingly reverse-engineering the Onity lock protocol, but the truth is far more depressing. With how stupidly simple this is, it wouldnt surprise me if a thousand other people have found this same vulnerability and sold it to other governments, says Brocious, in an interview with Forbes. An intern at the NSA could find this in five minutes.
Hack details on Brociouss website
BlackHat USA 2012 - My Arduino Can Beat Up Your Hotel Room Lock
Cody Brocious is a Boot2Gecko Hacker (Firefox Mobile OS) Systems Engineer at Mozilla Corp.
Gladiator Security Forum: www.gladiator-antivirus.com/