this post was submitted on 23 Mar 2024
7 points (88.9% liked)
Hardware Hacking
146 readers
1 users here now
Bend electronic devices to your will! This is a place to discuss all things electronics, hardware security, modifying devices, and circuit bending. Rules:
- Be excellent to each other
- Party on, dudes
- Please check for duplicates before posting
- Proceed at your own risk- we are not responsible for any damage or legal trouble from what you learn here. Use proper safety precautions when working with electricity, power tools, and solder.
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I think I saw a headline about some hacker convention in Vegas where they did this. Might have a basic dumbed down explanation common to articles about hacks.
The way they did it is not trivial. They disassembled the hotel management software, found an exploitable bug, and managed to write that bug into a card. They are not releasing the code as the vendor says after a year only around 30% of the devices are patched.
As card readers dont have internet connectivity fixing them is a slow process.
Oh thanks for the details. It wasn't something I felt compelled to read and just vaguely recalled existing. I'm slightly surprised they don't have internet these days. Obviously it would be an entire extra can of worms for security but manually patching each one sounds awful. I also saw in another comment someone said they are battery powered which makes it an even less appealing system. I'd feel inclined to make them bolt the other way and have the card and lock unit on the frame side and have them connected to a wired network routed through the wall and powered by mains also. Maybe there's some super obvious reason locks go from the door to the wall that I never thought to look in to though.