News: "Hacker claims he controlled appliances in every room of a five-star hotel"
#1
Suspended
Original Poster
Join Date: Jan 2011
Location: YYJ
Posts: 2,230
News: "Hacker claims he controlled appliances in every room of a five-star hotel"
this is interesting since it happened to a starwood hotel. so if the lights in your room start going on and off for no apparent reason...
source: http://venturebeat.com/2014/08/07/ha...ve-star-hotel/
Molina, a security researcher from San Francisco, described this feat at the Black Hat security conference in Las Vegas. His talk illustrated the perils of connecting dumb devices to the internet — the so-called internet of things — without first thinking about security.
Molina stayed at the five-star St. Regis hotel in Shenzhen, China. In the room, he found an iPad. It controlled all of the features of the room, such as the drapes, temperature, television, and lights. He investigated the device and found he could easily hack it.
“I controlled 200-plus rooms of a five-star hotel by abusing an insecure home automation protocol,” Molina said
.Molina stayed at the five-star St. Regis hotel in Shenzhen, China. In the room, he found an iPad. It controlled all of the features of the room, such as the drapes, temperature, television, and lights. He investigated the device and found he could easily hack it.
“I controlled 200-plus rooms of a five-star hotel by abusing an insecure home automation protocol,” Molina said
source: http://venturebeat.com/2014/08/07/ha...ve-star-hotel/
#2
Join Date: Aug 2011
Location: ECP
Programs: DL Diamond
Posts: 1,658
The conversation about connecting more things to the internet is a valid one.
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
#3
Join Date: Feb 2010
Location: ORD
Programs: US Air, UA BA LH AI DELTA MARRIOTT CHOICE SGP
Posts: 9,883
The conversation about connecting more things to the internet is a valid one.
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
#4
Join Date: Apr 2005
Posts: 799
The conversation about connecting more things to the internet is a valid one.
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
Good news: I tried and yes, https://www.flyertalk.com works too, so I bookmarked that and in the future I will be able to share my stories (and password) without being evesdropped by a bystander.
BTW: not so long ago terrorists created chaos at a number of hotels in India. For them turning lights on/off in a hotel with an iPad might be one of the tools to make sure people leave the relative safety of their rooms and enter the hallways. Macabre thought.
#5
Join Date: Jul 2009
Programs: none
Posts: 1,668
We went through all of this hysteria 14-1/2 years ago. (13-1/2 if you're a purist) Anyone remember Y2K? Anything that is controlled remotely (i.e., by means of an external network) can theoretically be controlled by anyone who has access to that network. That's the definition of "remote control".
But, if any appliance is NOT controlled by a network, it can't be hacked remotely.
But, if any appliance is NOT controlled by a network, it can't be hacked remotely.
#6
FlyerTalk Evangelist
Join Date: Nov 2003
Location: South Florida
Programs: AA LTG (EXP), Hilton Silver (Dia), Marriott LTP (PP), SPG LTG (P) > MPG LTPP
Posts: 11,329
The conversation about connecting more things to the internet is a valid one.
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
But when we're talking about lights, curtains, and TV, this seems more like a nuisance issue than a real security threat, no? I suppose opening the curtains when somebody is changing would also constitute a privacy violation, but that's about as far as I can see that going. Wouldn't most folks capable of doing something like this have bigger fish to fry if they've got their heart set on wreaking havoc?
#7
Join Date: Dec 2013
Location: Boston, MA
Posts: 102
I am not surprise because hackers can even hack the door lock! I was a victim at a 5 stars hotel, I wished I read this article earlier from Forbes:
http://www.forbes.com/sites/andygree...oom-break-ins/
http://www.forbes.com/sites/andygree...oom-break-ins/
#8
A FlyerTalk Posting Legend
Join Date: Apr 2004
Location: GVA (Greater Vancouver Area)
Programs: DREAD Gold; UA 1.035MM; Bonvoy Au-197; PCC Elite+; CCC Elite+; MSC C-12; CWC Au-197; WoH Dis
Posts: 52,134
#10
Join Date: May 2012
Location: SIN
Programs: JL GC | Marriott LT Silver | Global Entry | SQ Silver
Posts: 6,819
Yeah, this have been posted before in the St. Regis Shenzhen Master Thread.
#11
Join Date: May 2012
Programs: BA Executive Club
Posts: 154
A few years back at a hotel on the Costa Brava we had a major security breach.
The maid opened the door -with a key of all things! Stole 50 Euro.
Luckily she didn't have the expertise to open the curtains or switch the telly on.
The maid opened the door -with a key of all things! Stole 50 Euro.
Luckily she didn't have the expertise to open the curtains or switch the telly on.
#12
Join Date: May 2012
Location: SIN
Programs: JL GC | Marriott LT Silver | Global Entry | SQ Silver
Posts: 6,819
#13
Join Date: May 2002
Location: Arizona
Posts: 5,689
I can think of a lot more security breaches at Hotels and I am sure many Flyertalk members can think of many a more news worthy than controlling lights and curtains.
#14
Join Date: Feb 2010
Location: ORD
Programs: US Air, UA BA LH AI DELTA MARRIOTT CHOICE SGP
Posts: 9,883