Back in August, I blogged about a presentation at Black Hat, where a security researcher named Cody Brocious presented a paper on a vulnerability in hotel-door locks made by Onity, showing a method for opening many hotel-room locks with a simple, Arduino-based device.
Now comes the first reported case of a hotel-room break in using this technology "in the wild." A Hyatt in Houston's Galleria district was broken into using this method, according to the hotel, which had not replaced its locks even though it knew about the vulnerability.
In a statement sent to me, a White Lodging spokesperson says the company became aware of the vulnerability in its Onity locks in August, based on reading one of the stories I wrote about Brocious’s lock-hacking technique over the summer. But White Lodging says Onity only implemented a fix for that flaw in its locks after the September break-ins at the Houston Hyatt, around two months after I first alerted Onity to Brocious’s work.
Following those September incidents, White Lodging resorted to plugging the port at the bottom of its Onity locks with “epoxy putty,” according to the letter it sent to guests at its Houston location. The hotel company says it’s now working with Onity to put a more permanent solution in place, either plugging the locks’ ports or replacing their circuit board at every location it manages. “We sincerely regret that these thefts occurred, and hope that measures we have taken satisfy your concerns,” reads the letter to guests from White Lodging vice president Thomas Riegelman.
Security Flaw In Common Keycard Locks Exploited In String Of Hotel Room Break-Ins [Forbes/Andy Greenberg]
This week on Cool Tools’ Maker Update: Kitty Grabs Gold, a beer cooler that follows you, the Circuit Playground Express, Adafruit and Microsoft, Other Machine Co. and Bre Pettis, Tinkercad Lego export, a great kit for gadget and toy hacking, and Maker Faires. Our featured Cool Tool is the iFixit Electronics Tool Kit. Check out […]
The mechanical Royal Kludge keyboard (Update: in stock here) seems to do well with Amazon reviewers, but there are no guarantees you’ll receive one with the coveted OFF/NO switch.
Microsoft announced Tuesday a long-awaited upgrade to its Surface Pro series of high-end tablet PCs, dropping the number from the name and adding Kaby Lake processors, more minutes on a charge and a few dollars to the price tag. Here’s Mark Hachman, Senior Editor at PCWorld: For Surface Pro 4 owners, the new Surface Pro […]
Boasting an IPX6 waterproof rating, the Trakk Bullet Ultra Compact Waterproof Bluetooth Speaker resists dust and heavy rainfall. It’s currently available in the Boing Boing Store.The Trakk Bullet offers the same wireless convenience as other portable speakers, but few are built as tough as this one. Its utilitarian construction is designed to be a totally low-maintenance […]
The Ticwatch 2 Active Smartwatch is a simpler take on an active wearable that raised over $2m dollars on Kickstarter and is currently offered in the Boing Boing Store.Somewhere in between the single-day battery life and platform-specificity of the Apple Watch and Android Wear devices, there exists the Ticwatch. Instead of trying to shoehorn another […]
Loot Crate is a subscription service that delivers a box of curated pop culture goods to your doorstep. To sample their geeky wares, you can order a single mystery box exclusively from the Boing Boing Store.Each month Loot Crate sends you 6-7 unique items and apparel, including collectibles, books, and t-shirts. Pulling inspiration from all […]