Slashdot Mirror

← Back to Stories (view on slashdot.org)

Honeywell Home Controllers Open To Any Hacker Who Can Find Them Online

Posted by Soulskill on from the unlocked-door-vulnerable-to-anyone-who-can-open-doors dept.

Trailrunner7 writes: Security issues continue to crop up within the so-called "smart home." A pair of vulnerabilities have been reported for the Tuxedo Touch controller made by Honeywell, a device that's designed to allow users to control home systems such as security, climate control, lighting, and others. The controller, of course, is accessible from the Internet. Researcher Maxim Rupp discovered that the vulnerabilities could allow an attacker to take arbitrary actions, including unlocking doors or modifying the climate controls in the house.

3 of 85 comments (clear)

  1. Why do you need this stuff on the internet at larg by Anonymous Coward · · Score: 5, Insightful

    At home, sure, using a tablet to access and program the temperatures on your AC is fine.

    But that is your intranet, and securing that should be an obvious practice.

    And I can barely guess why you would want your locks handled that way, though in terms of security, a mechanical key is hardly inherently better than a digital one.

  2. this Internet of Things is getting old by turkeydance · · Score: 3, Insightful

    how about the Internet of We Will Not Pay for, and obviously, do not care to have Robust Security for our Systems.

  3. BSG had it right: Safe Network = No Network by millertym · · Score: 3, Insightful

    I have a hard time thinking of anything more obvious than the fact that "smart " are technology security disasters waiting to happen. With the current architecture of the internet and networking from the top down there is nothing truly safe. Especially consumer grade at home tech built with technology plebeians in mind.

    Call me old fashioned but I see enough at work and stories online every day to commit to keeping my home, appliances, vehicles, and anything else possible off the internet.