Black Hat Preview Shows Hotels, IoT Vulnerable to Hacks
In a preview of his Black Hat session next month, a security researcher exposes the risks of hotel automation systems and the Internet of things.During a session at the upcoming Black Hat security conference that starts Aug. 5 in Las Vegas, independent security consultant Jesus Molina is set to expose the risks of hotel automation systems. In a Black Hat preview webcast July 18, Molina provided a few details on his talk "Learn How to Control Every Room at a Luxury Hotel Remotely: The Dangers of Insecure Home Automation Deployment." Molina's hacking adventure began with a visit to the St. Regis Shen Zhen hotel in China. He stressed that he was only a guest and didn't go there with the intention of conducting a full security penetration audit. In most rooms at that hotel, there is an Apple iPad that hotel guests can use to control various functions in the room, including lights and blinds. Molina said he was curious how the iPad was controlling all of the room functions so he began to investigate. It turns out the network used for the room automation technology was the same network used for guest Internet access. Digging deeper, Molina discovered that the protocol used to control the various room attributes is the KNX/IP home automation protocol. He also discovered that the network and its protocol configuration were not secure.
Every room has a different IP address with a KNX/IP router, and Molina was able to gain control of all room attributes, including TV and temperature control, in nearly any room in the hotel that he wanted.