Maker of Hackable Hotel Locks Finally Agrees To Pay For Bug Fix

← Back to Stories (view on slashdot.org)

Maker of Hackable Hotel Locks Finally Agrees To Pay For Bug Fix

Posted by samzenpus on Friday December 7, 2012 @01:04AM from the cleaning-up-your-mess dept.

Sparrowvsrevolution writes "Slashdot readers are no doubt familiar by now with the case of Onity, the company whose locks are found on 4 million hotel room doors worldwide and, as came to light over the summer, can be opened in seconds with a $50 Arduino device. Since that hacking technique was unveiled by Mozilla developer Cody Brocious at Black Hat, Onity first downplayed its security flaws and then tried to force its hotel customers to pay the cost of the necessary circuit board replacements to fix the bug. But now, after at least one series of burglaries exploiting the bug hit a series of hotel rooms in Texas, Onity has finally agreed to shoulder the cost of replacing the hardware itself — at least for its locks in major chain hotels in the U.S. installed after 2005. Score one point for full disclosure."

66 comments

Min score:

Reason:

Sort:

I dunno... by Anonymous Coward · 2012-12-07 01:10 · Score: 2, Insightful

A bunch of people got their stuff stolen, a bunch of smaller hotels are out money, and Onity takes a huge hit? Seems like everyone would have been better off if everyone kept quiet and Onity just started shipping new units with the fix.
1. Re:I dunno... by Goaway · 2012-12-07 01:36 · Score: 5, Insightful
  
  They didn't want to ship them even after the knowledge was made public. It's not like there was any chance in hell they would have done it if nobody had known about the problem.
2. Re:I dunno... by Capt.Albatross · 2012-12-07 01:38 · Score: 2
  
  Seems like everyone would have been better off if everyone kept quiet and Onity just started shipping new units with the fix.
  One group that would be worse off are hotel operators seeking a lock-system supplier. With this information out, they can make a slightly more informed choice.
3. Re:I dunno... by mwvdlee · 2012-12-07 01:43 · Score: 4, Insightful
  
  They didn't want to ship them even after the knowledge was made public. It's not like there was any chance in hell they would have done it if nobody had known about the problem.
  It's not like there was any need they should have done it if nobody had known about the problem.
  Any lock is hackable. Just because Onity got targetted doesn't mean they are suddenly less secure than all the others.
  Obviously, not wanting to fix a known security issue IS a problem.
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
4. Re:I dunno... by MartinSchou · 2012-12-07 02:10 · Score: 5, Insightful
  
  Actually, the moment that lock was publicly compromised in this way, it DID become less secure than other non-compromised locks.
  A regular mechanical lock is secure, but the moment it becomes public knowledge that it can be defeated with a pen it becomes a lot less secure than other locks.
  Locks are supposed to deter and delay. Deter regular people and delay thieves. When the lock is completely compromised like this one, it no longer delays thieves, thus making it useless.
5. Re:I dunno... by Capt.Albatross · 2012-12-07 02:22 · Score: 2
  
  Just because Onity got targetted doesn't mean they are suddenly less secure than all the others.
  Right... for example, they could have been less secure than all the others from the start.
  Your argument, quoted above, is not false, but it is useful only in pointing out that we cannot assume the alternatives are secure. To anyone for whom the security of hotel locks matter, Onity has been shown to have been incompetent in its design, and it is the degree of its incompetence that matters. The vulnerability exploited here was not a subtle mistake.
6. Re:I dunno... by dbIII · 2012-12-07 02:37 · Score: 4, Insightful
  
  Restricting the knowledge to thieves and a company that didn't want to fix their problem is not a solution.
7. Re:I dunno... by Anonymous Coward · 2012-12-07 03:06 · Score: 0
  
  If your business is selling security products you better make sure your products are secure!
8. Re:I dunno... by Anonymous Coward · 2012-12-07 03:16 · Score: 2, Insightful
  
  How do you know NOBODY knew about it? These hacks could have been going on for years in small scale in hotels but no one would blame a firmware or circuit board design if they did not know there was a flaw. Some cop in some city could have caught someone and confiscated the device and had no idea what it was or how it worked, booked the guy, he did his few days in jail and moved on. Its not like a majot hotel chain is going to publish the fact that they were robbed or hacked.
9. Re:I dunno... by Anonymous Coward · 2012-12-07 03:49 · Score: 1
  
  Just because Onity got targetted doesn't mean they are suddenly less secure than all the others.
  Right... for example, they could have been less secure than all the others from the start.
  Your argument, quoted above, is not false, but it is useful only in pointing out that we cannot assume the alternatives are secure. To anyone for whom the security of hotel locks matter, Onity has been shown to have been incompetent in its design, and it is the degree of its incompetence that matters. The vulnerability exploited here was not a subtle mistake.
  We also now know that under no circumstance, will Onity quickly and effectively deal with situations where their locks have been compromised.
10. Re:I dunno... by Anonymous Coward · 2012-12-07 03:50 · Score: 0
  
  Unless the lock is of deadbolt fashion then it is no less or more secure than any other door lock without a shim guard.
  5 seconds with a plastic card inserted corner first and rotated down and the door is open.
11. Re:I dunno... by morgauxo · 2012-12-07 05:16 · Score: 2
  
  That assumes that nobody else would have figured out the same thing and used it. For that matter, who says nobody else did figure it out and use it. Are there no unsolved cases of things going missing from hotel rooms since these locks first started getting used until now?
12. Re:I dunno... by Zadaz · 2012-12-07 07:48 · Score: 1
  
  And here I was always told that security by obscurity was no security at all.
13. Re:I dunno... by Goaway · 2012-12-07 10:04 · Score: 1
  
  Any lock is hackable. Just because Onity got targetted doesn't mean they are suddenly less secure than all the others.
  "Any lock" doesn't have a connector on the outside which you can plug into to open it. They were less secure than other locks.
14. Re:I dunno... by Anonymous Coward · 2012-12-07 10:08 · Score: 0
  
  And here I was always told that security by obscurity was no security at all by idiots who see the world in black and white.
  *fixed*
15. Re:I dunno... by Anonymous Coward · 2012-12-07 10:14 · Score: 0
  
  How do you know NOBODY knew about it? These hacks could have been going on for years in small scale in hotels but no one would blame a firmware or circuit board design if they did not know there was a flaw. Some cop in some city could have caught someone and confiscated the device and had no idea what it was or how it worked, booked the guy, he did his few days in jail and moved on. Its not like a majot hotel chain is going to publish the fact that they were robbed or hacked.
  Gosh, what if the hotel staff have been swiping shit from people's rooms for years?
  Why do you morons keep looking at this like it's a technology problem?
16. Re:I dunno... by Anonymous Coward · 2012-12-08 15:25 · Score: 0
  
  What the fuck?
  This head in sand(or is it head in ass?) mentality is insightful?
  You are assuming that no one knew about this before or every will discover it by tech-savvy burglars.
That is to say, by Black+Parrot · 2012-12-07 01:10 · Score: 4, Interesting

Full disclosure by a third party.

--
Sheesh, evil *and* a jerk. -- Jade
A month by ledow · 2012-12-07 01:18 · Score: 5, Informative

I give it a month before the new firmware is discovered vulnerable to a very similar attack, or a way to bypass the plug is found.
That said, if I were Marriot, of course I'd have negotiated just this kind of deal. It would be quite simple, and any number of electronic lock-makers would fall over themselves to install reduced costs locks (or even compatible boards) and just live off the future support for them.
What bothers me is not the replacement policy (which looks like you need to argue lots to get something quite reasonable, like a free firmware fix), or the security (we all know that lots of modern products have security flaws and to be honest, this one requires quite some skills / balls to exploit), but the denials and brushing-under-the-carpet.
Your locks have one purpose. To stay shut against an intruder. That's all. Sure, we don't expect the room to be impenetrable or them to be crowbar-proof, but we do expect you to not be able to walk up to them with just a device and start changing their settings without that device being authenticated, revokable and protocol-protected. And certainly not to the point that you can work out what to do to make it accept any card from just a lock alone without some serious reverse-engineering.
Damn right, you'd replace my locks. Or your insurance would have one huge hefty claim on it by now from chains like Marriott. Hell, I'd even let you off if I could fit them myself on my own schedule so as to not disturb guests or interfere with business operations, and even let you charge me for delivery.
But what I wouldn't accept would be it taking MONTHS to get to the position that a fix was available after a successful public demonstration. You should have been calling me up and shipping the updated boards/firmware the next day, at least, and worrying about the cost later.
If there's a repeat of this incident with the new board, I would need to KNOW that you were going to do something timely about it BEFORE burglaries start hitting my hotel insurance, which may not even pay out if the locks are that bad.
1. Re:A month by camperdave · 2012-12-07 02:25 · Score: 5, Insightful
  
  Your locks have one purpose. To stay shut against an intruder. That's all. Sure, we don't expect the room to be impenetrable or them to be crowbar-proof, but we do expect you to not be able to walk up to them with just a device and start changing their settings without that device being authenticated, revokable and protocol-protected. And certainly not to the point that you can work out what to do to make it accept any card from just a lock alone without some serious reverse-engineering.
  Well, it's not as if you can just stick in an unbent paper clip or the barrel of a stick pen. And it's not as if you can connect a quickly hacked together "pick" out of an old wall wart and a 9 Volt battery. You have to stick in a specifically crafted piece of sophisticated electronics, The manufacturer thought that would be enough of a barrier.
  
  But what I wouldn't accept would be it taking MONTHS to get to the position that a fix was available after a successful public demonstration. You should have been calling me up and shipping the updated boards/firmware the next day, at least, and worrying about the cost later.
  You want to go from zero to having authenticated, revokable and protocol-protected lock programmers in a day? Dream on, chum, dream on.
  
  --
  When our name is on the back of your car, we're behind you all the way!
2. Re:A month by dbIII · 2012-12-07 02:38 · Score: 1
  
  Sophisticated electronics? I don't think so.
3. Re:A month by Zontar_Thing_From_Ve · 2012-12-07 03:07 · Score: 3, Insightful
  
  Well, it's not as if you can just stick in an unbent paper clip or the barrel of a stick pen. And it's not as if you can connect a quickly hacked together "pick" out of an old wall wart and a 9 Volt battery. You have to stick in a specifically crafted piece of sophisticated electronics, The manufacturer thought that would be enough of a barrier.
  Actually, I think the manufacturer thought that it would be more like something you'd see on TV in CSI where only the super-duper elite criminals would be able to pick the locks, not "some dude who watched a video on YouTube or found a web page on how to do it". It's kind of like car alarms. Car alarms don't exist to stop the elite thieves because they won't. They exist to stop Joe Crackhead from trying to steal your car. What happened basically is somewhat equivalent to finding a way to turn off the car alarm so Joe Crackhead is now a serious threat to steal your car with impunity.
4. Re:A month by Anonymous Coward · 2012-12-07 03:15 · Score: 0
  
  The bottom line is: Locks only keep honest people honest.
5. Re:A month by ledow · 2012-12-07 03:26 · Score: 2
  
  "You want to go from zero to having authenticated, revokable and protocol-protected lock programmers in a day? Dream on, chum, dream on."
  When you're paying probably $100+ per lock (the internal circuit boards are $11 replacement-cost if you don't send them back, for a start) * 50 locks per floor * 5 floors per hotel * 3700 franchisee hotels? Plus any number of other clients?
  No. I expect it to already be in place, especially if it means that you have to produce several thousand such devices for your field engineers to program the locks in the first place (and thus such field engineers and anyone who knows them could have complete access before you even start).
  We're not talking Diffie-Hellman, here, we're talking about having some kind of protection on the programming interface. Like having to program them from inside the door, or remove the lock, first, for instance. Like just about anything with some kind of programming interface requires already (I can't program a key for my car without a very expensive, controlled, licensed device monitored and authorised only by the original manufacturer, or access to the internals of my exact car with at least two of my keys to it, one of which is capable of programming and one of which can already start the car, or a LOT of hacking - not just sticking a plug into a socket exposed to the driver's door handle and telling it what key to accept, which is what this is)
6. Re:A month by AmiMoJo · 2012-12-07 05:43 · Score: 1
  
  You have to stick in a specifically crafted piece of sophisticated electronics, The manufacturer thought that would be enough of a barrier.
  Clearly it wasn't because criminals started to exploit it very quickly. And the "specifically crafted piece of sophisticated electronics" is actually a low cost dev board designed specifically to be easy to use by non-technical people like artists. No programming and only very basic soldering skills required.
  
  You want to go from zero to having authenticated, revokable and protocol-protected lock programmers in a day? Dream on, chum, dream on.
  I don't think the GP was implying that they should implement all those fixes, merely the one that they have used - to remove the debug header from the PCB.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
7. Re:A month by yuhong · 2012-12-07 10:56 · Score: 1
  
  An audit of Onity's solutions to lock hack:
  http://www.thehscg.com/resources/White+Paper+-+LOCKFIX++v20+released++$282$29.pdf
Re:HOW MANY RAPES DURING THIS WHILE ?? by causality · 2012-12-07 01:21 · Score: 4, Funny

Too many !!
I think you could have a career in politics.

--
It is a miracle that curiosity survives formal education. - Einstein
"Score one for bad publicity" by Chatterton · 2012-12-07 01:21 · Score: 3, Insightful

"Score one point for full disclosure". I don't think so. "Score one for bad publicity" yes. With the previous customer looking somewhere else to provide new lock as Onity wheren't caring about them and their promise of high security electronic locks...
1. Re:"Score one for bad publicity" by AmiMoJo · 2012-12-07 05:47 · Score: 2
  
  What about the people who were robbed, and the hotels they were staying in? If they had not known about this vulnerability it would have made investigation and getting compensated very difficult. The cops are hardly going to do a teardown of the lock to see if it is hackable.
  Onity probably wouldn't have told anyone about the problem anyway. Often vendors just ignore the problem or quietly fix it and then release a new "even more secure" version of the product and charge you for it.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Attempt to Limit Future Liability by Capt.Albatross · 2012-12-07 01:26 · Score: 4, Informative

The leaked agreement contains this paragraph:
"Onity’s proposal for franchisees is conditioned on the franchisee’s acknowledgement that Onity does not guarantee a lock’s invulnerability to hacking."
While this is a reasonable statement on its own, the real issue here is competence. Onity's design was in such blatant and avoidable violation of basic security principles (e.g. a small keyspace and a lack of real cryptography) that it might be be called negligent.
1. Re:Attempt to Limit Future Liability by Rockoon · 2012-12-07 01:34 · Score: 2, Interesting
  
  Meanwhile, most of the non-electronic locks manufactured in the world can be "hacked" by a pair of paper clips.
  
  I'm calling bullshit here. Looks to me like their locks were fit for purpose, where its purpose is to keep honest people honest.
  
  --
  "His name was James Damore."
2. Re:Attempt to Limit Future Liability by Arthur+B. · 2012-12-07 01:39 · Score: 2
  
  The reasonable statement would be that while Onity cannot guarantee the lock won't be hacked, it will offer a free replacement if such a hack were to be found. This puts the incentive in the right place. Onity could even have a third party insurer cover the risk if they don't want this exposure on their balance sheet.
  
  --
  \u262D = \u5350
3. Re:Attempt to Limit Future Liability by erroneus · 2012-12-07 01:40 · Score: 1
  
  See? They should spin off into two businesses.
  1. A Hardware company
  2. A Software company
  In the case of the hardware, they are not liable because the problem would be in the software. In the case of the software, they would be indemnified by the EULA. Game over right?
4. Re:Attempt to Limit Future Liability by Anonymous Coward · 2012-12-07 01:55 · Score: 0
  
  I was just thinking how that statement applies in the movie world. On one side, you have high tech thieves with some almost sci-fi tools, that would probably be worth more to build and research than the actual loot, and on the other, we have the low tech, social engineering, just a few dollars and some basic electronics skills to get past, even the most advanced systems. I'm just saying, that a lot of companies practice this security through obscurity, and any professional probably knows or has a list of tools and hacks they can use.
5. Re:Attempt to Limit Future Liability by Maximum+Prophet · 2012-12-07 02:25 · Score: 1
  
  Physical lock makers will tell you that their cheap locks are pickable. But they'll sell you "security" locks that cost much, much more, and are much more resistant to lockpicks. Several manufacturers have offered bounties for anyone that can pick their locks.
  
  Did Onity offer customers the choice of good and better locks and the customers cheaped out, or was this the best they had?
  
  --
  All ideas^H^H^H^H^Hprocesses in this post are Patent Pending. (as well as the process of patenting all postings)
6. Re:Attempt to Limit Future Liability by Rockoon · 2012-12-07 02:34 · Score: 1
  
  Physical lock makers will tell you that their cheap locks are pickable. But they'll sell you "security" locks that cost much, much more, and are much more resistant to lockpicks.
  Are you suggesting that every physical lock maker also offers the advanced tumblers? Are you also suggesting that offering such tumblers is a prerequisite to not getting sued into oblivion on your cheap tumblers? Finally, are you suggesting that this electronic lock company claimed that its locks were unpickable?
  
  --
  "His name was James Damore."
7. Re:Attempt to Limit Future Liability by Capt.Albatross · 2012-12-07 05:17 · Score: 1
  
  Meanwhile, most of the non-electronic locks manufactured in the world can be "hacked" by a pair of paper clips.
  Onity's locks should be judged not only by their physical counterparts, but also by what can reasonably be achieved electronically. This problem was entirely avoidable, at little or no extra original expense (and much less overall) if Onity had just employed one or two competent, security-aware developer/designers. I don't expect perfection, and is reasonable competence too much to ask?
  
  I'm calling bullshit here. Looks to me like their locks were fit for purpose, where its purpose is to keep honest people honest.
  The larger issue that concerns me here is that this cavalier attitude to electronic security seems to be unjustifiably common, and it seems that someone needs to get slapped around a bit before businesses see this as something they need to pay attention to. If Onity is that someone, we are making progress.
Sure, "in seconds" by Rogerborg · 2012-12-07 01:41 · Score: 4, Insightful

If by that you mean disassembling the face of the lock, plugging the widget in shoving the magic electrons in.
You know what else works "in seconds"? A $10 crowbar, 100% of the time.
It's a ridiculous nerd-rage non-issue, given that to work the hack you'd have to be on site for an extended period, cool as a cucumber, looking and acting like a member of staff. You might as well be staff, and that's where the real vulnerability is, and always will be.

--
If you were blocking sigs, you wouldn't have to read this.
1. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 02:00 · Score: 1
  
  If by that you mean disassembling the face of the lock, plugging the widget in shoving the magic electrons in.
  You know what else works "in seconds"? A $10 crowbar, 100% of the time.
  It's a ridiculous nerd-rage non-issue, given that to work the hack you'd have to be on site for an extended period, cool as a cucumber, looking and acting like a member of staff. You might as well be staff, and that's where the real vulnerability is, and always will be.
  In seconds means in seconds. Know the facts before you call someones legitimate concerns rediculous.
  http://todaynews.today.com/_news/2012/12/06/15703318-rossen-reports-new-device-lets-crooks-crack-many-hotel-locks?lite
2. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 02:19 · Score: 0
  
  You know what also works in seconds? This hack. What doesn't leave marks or other signs of intrusion? This hack.
3. Re:Sure, "in seconds" by ATMAvatar · 2012-12-07 02:24 · Score: 1
  
  The subterfuge fails when you are carrying around a crowbar. You would have to be pretty creative to pass yourself off as hotel staff or a guest while carrying one.
  
  --
  "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety."
4. Re:Sure, "in seconds" by gl4ss · 2012-12-07 02:25 · Score: 2
  
  go opening doors with a crowbar and you'll be doing time in no time.
  open them with no traces and the hotel staff gets blamed for the burglary. there was no need to be there for "extended period", it's not like he was disassembling the lock from it's place.
  
  --
  world was created 5 seconds before this post as it is.
5. Re:Sure, "in seconds" by greg1104 · 2012-12-07 02:40 · Score: 1
  
  Hotels have engineering or maintenance staff who carry tools around all the time (the "engineering" term is used at the more expensive hotels). You just need to dress like a working class guy in a uniform--your name on a badge helps--and no one will question why you're wandering around with a crowbar. At a nice place it's a cheaper look to pull off than the suit you'd need to look like a concierge.
6. Re:Sure, "in seconds" by Black+Parrot · 2012-12-07 03:03 · Score: 2
  
  open them with no traces and the hotel staff gets blamed for the burglary
  What I want to know is, will Q get his bypass-kit updates for free, or will Her Majesty have to shell out for them?
  
  --
  Sheesh, evil *and* a jerk. -- Jade
7. Re:Sure, "in seconds" by Sockatume · 2012-12-07 03:35 · Score: 1
  
  As opposed to using a crowbar, where you can have a flop sweat, be dressed like a sumo wrestler, and be opening a door with a crowbar, and nobody will bat an eyelid.
  
  --
  No kidding!!! What do you say at this point?
8. Re:Sure, "in seconds" by Megane · 2012-12-07 03:51 · Score: 2
  
  disassembling the face of the lock
  Are you talking about the hack?
  Nope. There's an exposed barrel jack on the bottom of the lock. You can make the hack device into the shell of a whiteboard marker, then just push it up the hole.
  Also, no marks or splinters like a crowbar would leave behind.
  
  --
  #naabhaprzrag, #sverubfr-000, #agi-fcbafberq, negvpyr[pynff*=' negvpyr-ary-'] { qvfcynl: abar !vzcbegnag; }
9. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 04:03 · Score: 1
  
  sure a crowbar works, but leaves a lot of evidence. With a digital lock pick, you can get in, get out, leave no trace, and the hotel employees take the blame.
10. Re:Sure, "in seconds" by beerdragoon · 2012-12-07 04:27 · Score: 1
  
  ...you could, or you could use your $10 crowbar to threaten a cleaning lady or bellhop and get a room card that will open any guest room in the hotel.
11. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 05:07 · Score: 0
  
  Try filing an insurance claim for theft when the burglar uses a key and gloves. Now try when they use a crowbar and gloves.
12. Re:Sure, "in seconds" by greg1104 · 2012-12-07 05:14 · Score: 2
  
  ...followed by security being called by the person you just threatened. Memorably harassing a member of the hotel staff is a pretty stupid plan.
13. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 08:16 · Score: 0
  
  You know what doesnt make even a sound? This hack. You know what would look like you are using a regular key? This hack.
14. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 08:59 · Score: 0
  
  You know what else works "in seconds"? A $10 crowbar, 100% of the time.
  The hack leaves no (?) evidence; a crowbar does.
  So from a certain point of view it makes no difference (someone got in), in others it does: police and insurance companies have reasonably evidence that fraudulent reporting is not being done and an actual theft has occurred. While it's little consolation if your stuff is gone, in the latter case you can at least can be reimbursed. Depending on the value of what's been taken, that can be a big deal.
15. Re:Sure, "in seconds" by Man+On+Pink+Corner · 2012-12-07 11:59 · Score: 1
  
  Just dress up like a physicist. Problem?
16. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 12:33 · Score: 0
  
  the plug for the magic electrons is on the bottom of the lock you dumb fuck
17. Re:Sure, "in seconds" by Anonymous Coward · 2012-12-07 18:51 · Score: 0
  
  then just push it up the hole.
  
  That's what she said!
Hotel Safes Problematic Too by eric2hill · 2012-12-07 02:27 · Score: 2

I was just in a hotel last week and had put my laptop in the room safe. I entered my 6 digit code and locked the safe. Two days later, I tried to open it and it wouldn't take my pin. I called the hotel staff and a maintenance guy came to my room with a small 10-key pad that had an LCD display. He plugged an RJ45 cable into a port on the bottom of the locking device, entered 2468#, then 1357#, and the safe opened. After it was open, it flashed LO-BAT, so that explains why it lost my combination.
If it's as easy as having one of those pin pads, why even have the safe in the room?

--
LOAD "SIG",8,1
LOADING...
READY.
RUN
1. Re:Hotel Safes Problematic Too by Anonymous Coward · 2012-12-07 04:11 · Score: 0
  
  many of them are 000000 or 123456 for the combination too...
2. Re:Hotel Safes Problematic Too by SydShamino · 2012-12-07 04:37 · Score: 1
  
  When we checked into the Bellagio in Vegas a long time ago, we found our room safe already locked. We called down to the desk, and they sent up three guys: a technician, a security dude to stand behind the technician, and a security guy at the door.
  The technician had to plug something in and manipulate the lock. When it opened, the security guy behind him looking over his shoulder confirmed it was empty, said so out loud, and the guy at the door radioed the information down to someone.
  So while it might have been just as easily hackable, the hotel's policies at least made it look like it was a much bigger deal.
  
  --
  It doesn't hurt to be nice.
3. Re:Hotel Safes Problematic Too by bWareiWare.co.uk · 2012-12-07 06:06 · Score: 1
  
  It is entity possible that actual authentication happened before he even came to your room.
  They obviously know the serial number of the safe in your room. It may have required physical keys, codes, and biometrics from multiple high-ranking employees to download a single use time-limited code onto that key-pad.
  -- probably not though.
Re:HOW MANY RAPES DURING THIS WHILE ?? by kelemvor4 · 2012-12-07 03:11 · Score: 4, Funny

Too many !!
But were they "legitimate?"
The reason this was such a big deal.... by mark-t · 2012-12-07 03:41 · Score: 1

One, the vulnerability is such that after the fact there is no indication that the lock was ever hacked. If somebody has used this hack on a lock, there is no way for the owner or anyone else to tell that somebody has bypassed it (as there would be with a physically broken lock, for instance).
Two the hack did not require access to abnormally sophisticated skills or tools (arduino's can be purchased, retail, by anybody, and used by anybody, even if they do not know how to how to program, any more than it requires unusually specific skills or tools to... say, use a word processor, or build ikea furniture).
Three, the port did not require any special tools to access. It was accessible from the outside of the unit, and was common port type, so the type of plug that fits it are cheap and easily to find.
In a nutshell, once the means of bypassing this vulnerability became widely known, Onity locks became about as practical a means of security as those which might put its assembly hardware (of common type) access on the the same side of the door as that which is supposed to need some sort of key or pass code to enter.

--
File under 'M' for 'Manic ranting'
Onity was totally insane. by 140Mandak262Jamuna · 2012-12-07 06:24 · Score: 2

When the news about the hack got out, the company came out with "two levels of fixes".
The first level is basically making the DC charging port more difficult access. Replace plastic with metal etc. It was willing to ship that thing for free.
Then, it had the second second level fix, flashing new firmware. It wanted some 40$ per lock for the locks that were capable of accepting the patch! This is basically daylight robbery. There is simply no justification for charging that much for a security upgrade in software! If the locks were not capable of being upgraded, then the entire board has to be changed, costing even more money.
I think Onnity does not seem to get one striking fact. 90% of the motels and economy hotels are owned by Indian immigrants. It is very much possible they have a cousin back home who might hack out a patch.

--
sed -e 's/Chuck Norris/Rajnikant/g' joke > fact