ArduinoMania

paperclip

paperclip

Tags

& consumable fuels 2016 hackaday prize 2017 hackaday prize 2018 hackaday prize 3d 3d printed 3d printer 3d printer hacks 3d printing 3d printing & imaging 3dprinting 433mhz ::vtol:: absolute beginners accelerometer acquisitions & takeovers actuators adafruit adc adk advertising ai airline industry alarm alt american football analog android android hacks animation animatronics announcements api apple ar(t)duino arcade arduino arduino 101 arduino c arduino c++ arduino create arduino day arduino due arduino education arduino hacks arduino ide arduino iot cloud arduino leonardo arduino mega arduino mega 2560 arduino micro arduino mkr1000 arduino nano arduino pro micro arduino pro mini arduino robot arduino shield arduino store arduino uno arduino yún arduino zero arduinoatheart arduinobasics arduinocertified arduinouno arm armed forces around the world art art & design art & sculpture arts & entertainment assistive technology atmega atmega 328 atmega328 atmega328p atmega32u4 atmel attiny attiny hacks attiny85 audio audio technology augmented reality author_name|aaron souppouris author_name|amber bouman author_name|amrita khalid author_name|amy skorheim author_name|andrew tarantola author_name|billy steele author_name|bryan menegus author_name|cherlynn low author_name|cheyenne macdonald author_name|dana wollman author_name|daniel cooper author_name|devindra hardawar author_name|engadget author_name|igor bonifacic author_name|james trew author_name|jeff dunn author_name|jessica conditt author_name|jon fingas author_name|jon turi author_name|karissa bell author_name|katie malone author_name|kris holt author_name|kris naudus author_name|lawrence bonk author_name|malak saleh author_name|mariella moon author_name|mat smith author_name|matt brian author_name|nathan ingraham author_name|nicole lee author_name|peter cao author_name|pranav dixit author_name|richard lai author_name|roberto baldwin author_name|sam rutherford author_name|saqib shah author_name|sarah fielding author_name|sean buckley author_name|stephanie barnes author_name|steve dent author_name|terrence o'brien author_name|tim stevens author_name|valentina palladino author_name|will shanklin automation automotive industry autonomous autos avr balance banking & budgeting baseball basketball battery beer beer hacks best arduino blog bicycle bike bioengineering biology bitscope ble blink1 blinkm bluetooth bluetooth le board & management changes books & publishing bootloader budget business c c++ calculator camera cameras & photography capacitive car car hacks cars cartoons & comics casajasmina cat celebrities christmas ciid circuits circuits course classic hacks climate change clock clock hacks clocks cloud cnc cnc hacks cnc machine code coding coffee commerce commercial vehicles commodity markets communication community company earnings company legal & law matters competition computer computer hacks computer science computers computers & mobile computing conference conglomerates connected home cons consumer discretionary control controller controllers cooking hacks course design craft & design create crime & justice crowdfunding cycling dagu data data acquisition data logger dc motor design desktops dev boards digispark digital digital audio hacks digital cameras hacks digital fabrication disease & medical conditions display diy diy hacks and how tos diy projects diyhacksandhowtos do it yourself doityourself download driver drone drones drones & vehicles ds1307 due education elections electronic electronicequipment electronics employment & career encoder engineering engineering education entertainment enviroment environment esp32 esp8266 ethernet events exhibition family & relationships fan fastled feature featured fft finance finance trading financial fraud prevention financials industry fitness flora food & beverage food & cooking formula one fpga freetronics freshman design seminar fritzing fun & games furniture furniture & lighting gadgetry gadgets galileo gallery game game consoles game controllers games gaming gardening gas gear general general discussion genuino genuino 101 genuino mkr1000 github giveaway golf google government government agencies gps gps hacks green hacks grove gsm guitar gyroscope h-bridge hack hackaday columns hackaday links hackaday prize hackaday.io hackathon hacking hacks halloween ham radio hand handheld & connected devices hands-on hardware hardware-hacking hc-05 hc-sr04 hdsp health health care industry hexapod hexmotor h-bridge board hid history hobbies & personal activities holiday hacks holiday20 home home & garden home automation home hacks home school homebrew homemade how-to humanities i-vs-v-plot i2c ic ide ideas ikea imu incubator indiegogo indoor industrials information technology infrared insertcoin inspiration instagram installation instructables instruments&components intel interaction design internet internet & networking technology internet of things interview investing education investment & company information iot iphone ir itp jason poel smith java javascript joystick keyboard kickstarter kids kids & family kit kit review kl25z labor issues lamp language|en-us laser laser cutting laser hacks lcd ldr led led display led hacks led matrix led(s) leds legislative branch lego leonardo lesson libraries library lifehacks light lighting lights lilypad linear actuator linux loans lock log amplifier lora machine learning magnet magnetometer major league baseball make maker maker faire maker faire bay area maker faire rome maker news maker pro maker shed makerfaire makers makeup & costumes massimo banzi materia 101 matrix max media medical hacks mega mergers micro microcontroller microcontrollers microphones microsoft midi midi controller military & defense minipost misc misc hacks mkr1000 mobile mobile apps mod modding module morse code mosfet motor motor controller motor racing motors mouse movie reviews movies mp3 mpu6050 msp music musical hacks musical instruments nano nano 33 iot national basketball association national football league natural phenomena nature & environment neopixel neopixels neural network news nfc nintendo nixie node.js nrf24l01+ officeelectronics oil oled op amp open hardware open source open source hardware opencv opensource oscilloscope other boards parenting parts pc pcb peripherals peripherals hacks personal finance - career & education personal finance - lifestyle personal investing ideas & strategies pets pharmaceuticals & drug trials photocell photodiode photography photography & video phototransistor physics piano pic pid piezo pinball plotter politics & government pollution & waste potentiometer pov power power supply pressure sensor printed circuit board printed circuit boards printer pro mini processing professional services programming project projects promotion prototyping provider_name|engadget pulse pwm python quadruped r radio radio hacks radioshack raspberry pi raspi rc region|us relay remote remote control renewable energy & energy saving research resellers retro retrocomputing review reviews rf rfid rgb rgb led rgb leds robot robot arm robotic arm robotics robots robots hacks rotary encoder rover rtc school schools science scratch sectors & industries security security hacks seeedstudio semi-autonomous sensor sensors serial servo servo motor servos sewing sharp ir shield shopping shops simple simulator singapore international news site|engadget slider small businesses smart phones smartphone sms soccer social & online media social media society & culture software software development software hacks solar solenoid sonar sony sound space space & astronomy sparkfun speaker speakers & headphones speech recognition spi sports & recreation spreadsheet star wars stem stepper stepper motor switch synth synthesizer tablets tachometer tax & economy taxes teaching technology technology & electronics teensy telecommunication television temboo temperature temperature sensor tests & procedures tetris tft the hackaday prize thebuyersguide thermistor thingm tips and tricks tool hacks toy toy hacks toys transport accident transportation transportation hacks travel & tourism travel organizations tronixlabs tronixstuff tutorial tutorials tv twitter uk international news ultrasonic ultrasonic sensor ultrasound uncategorized unions uno us international news usa news usb utility industry venture capital video video games video hacks video technology vintage virtual reality visual arts voice control vu meter water wearable wearable computing wearable hacks wearables weather weekend projects wifi wifichron windows wireless wireless hacks wise clock 4 woodworking workshop workshop(s) workshops ws2812 ws2812b xbee youtube yún zero

Arduino, resistor, and barrel plug lay waste to millions of hotel locks

The security flaws on this common hotel keycard lock are nothing short of face-palmingly stupid. Look closely at the picture above. This is a hotel room door swinging open. The device he holds in his hand is an Arduino connected to the OUTSIDE portion of the door lock. It takes approximately 200 milliseconds from the time an attacker plugs the device in, until the door can be opened. Yes, in less than 1/4 of one second an Arduino can open any of the millions of these locks in service.

The exploit in Onity programmable keycard locks was revealed by [Cody Brocious] at the Blackhat conference. Apparently the DC barrel jack on the outside of the lock serves as a one-wire protocol interface. Once communications are established a 32-bit sitecode can be read from any of the locks and immediately used to open the door. There is no authentication or encryption used to obfuscate this kind of attack. To make matters worse, you can even read out master key and skeleton key codes. These codes facilitate ‘magic’ keys used to open a variety of different doors through the system.

We’re no strangers to easy hotel beak-ins. But how can a digital lock possibly be sold with this type of vulnerability present? Really!?

Here’s the white paper on the exploit as well as the slides from his talk (PDF).

[via Reddit]

Filed under: cons, security hacks

[original story: Hack a Day]

Hack a Day 25 Jul 20:01

arduino cons hotel room lock lock picking onity security hacks