Slashdot Mirror

← Back to Stories (view on slashdot.org)

Also Hackable: Drive-Through Car Washes

Posted by Soulskill on Friday February 20, 2015 @09:38AM from the not-everything-needs-a-web-interface dept.

PLAR writes It turns out LaserWash automatic car washes can be easily hacked via the Internet to get a free wash or to manipulate the machines that clean the cars, a security researcher has found. Billy Rios says these car washes have web interfaces with weak/default passwords which, if obtained, could allow an attacker to telnet in and use an HTTP GET request to control the machines. Rios adds that this probably isn't the only car wash brand that's vulnerable.

2 of 103 comments (clear)

Min score:

Reason:

Sort:

Online Manual by chill · 2015-02-20 10:07 · Score: 4, Informative

A quick Google search for "laswerwash ip address" and the very first link is a PDF of the LaserWash Owner/Operator manual with LOTS of useful information.
Things like default IP address, default port, default passwords, command sequences, etc.

--
Learning HOW to think is more important than learning WHAT to think.
Re:Embedded systems devs by Zero__Kelvin · 2015-02-21 00:44 · Score: 3, Informative

Do the world a favour and stay out of the Computer Security Business. 80% of CompSec is anticipating how people might use things in ways they were never intended to be used.

--
Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun