Emerging Tech

Your hotel room keycard lock is vulnerable to hackers

Andrew Couts
By
Onity HT24 lock

The next time you stay at a hotel with keycard locks on your room door — that is to say, nearly any hotel nowadays — beware: You may not be the only one who can get in. And we’re not talking about the cleaning staff.

This is the warning of 24-year-old Mozilla software developer and self-described hacker Cody Brocious, who recently showed Forbes’ Andy Greenberg just how vulnerable some 4 million of the keycard locks used in popular hotels are to hacker trickery.

Brocious, who will present his complete findings at the Black Hat security conference in Las Vegas on Thursday, found that keycard locks made by manufacturer Onity can sometimes be opened using a $50 homemade, open-source gadget that plugs into the DC port located at the bottom of the lock housing. Brocious’s hacking tool works because the DC power port allows access to the lock’s memory (the lock is controlled by a simple computer, after all), which contains a piece of code that tells the lock to open, explains Greenberg. Just plug in the device, and a few seconds later, “click,” and you’re in.

At least, that’s how it is supposed to work — in practice, it’s not that reliable. Greenberg says that of the three doors Brocious attempted to demonstrate the tool’s ability on, only one worked — after the second try.

Brocious discovered the vulnerability in Onity’s lock system by accident, he says, while working for a startup called Unified Platform Management Corporation (UPM), which was attempting to create a universal lock system for hotels. Brocious was tasked with reverse engineering Onity’s locks, and thus discovered the “open sesame” trick. UPM later sold the intellectual property to locksmith training school the Locksmith Institute for $20,000. In other words: The ability to open Onity locks is not new, nor is Brocious the only one who knows how to build the electronic lock pick device.

When Greenberg contacted Onity to ask about its locks’ vulnerability, the company said it had not heard of Brocious’s invention, and ” places the highest priority on the safety and security provided by its products and works every day to develop and supply the latest security technologies to the marketplace.”

Not exactly reassuring, to say the least. Perhaps now you’ll make good use of that deadbolt.

Don't Miss

Get your Sagan on with 60 awe-inspiring photos of the final frontier
Up Next

Sony won't bring its new 16GB to Gamescom but it will be priced around $150
apple engineer draws objects as spaceships eric geusz sriracha feat
Emerging Tech

Eric Geusz: Apple engineer by day, spaceship designer by night

An Apple software engineer by day, artist Eric Geusz spends his nights drawing everyday household objects as amazing, science fiction-style spaceships. Check out the impressive results.
Posted By Luke Dormehl
sgr a black hole flares image 1405 1 sagittarius
Emerging Tech

The black hole at the center of our galaxy is flaring and no one knows why

At the heart of our galaxy lies a supermassive black hole, Sagittarius A*. Normally this giant monster is relatively docile, but recently it's been a hotbed of unexpected activity, rapidly glowing 75 times brighter than normal.
Posted By Georgina Torbet
spaceil tardigrades moon tardigrade
Emerging Tech

SpaceIL’s crashed lander may have sent thousands of tardigrades to the moon

When the SpaceIL craft Beresheet crashed into the moon earlier this year, it left more than just an impact mark. Thousands of micro-animals called tardigrades were along for the ride and may have survived the crash.
Posted By Georgina Torbet
nasa small satellite projects cme 1
Emerging Tech

NASA’s satellite projects will study the sun using solar sailing

Small satellites can be used for all sorts of purposes, and NASA has been searching for ideas to push ahead the capabilities of the hardware. The agency has announced two new projects to demonstrate the potential of small satellites.
Posted By Georgina Torbet
hubble nebula ngc 2022 the inky abyss
Emerging Tech

Hubble captures a beautiful cosmic jellyfish made of glowing gas

A new image from Hubble might look like a deep-space jellyfish, but it's not a sign of extraterrestrial life - in fact, it's a planetary nebula called NGC 2022, located in the constellation of Orion (The Hunter).
Posted By Georgina Torbet
parker probe solar wind image 6588 1
Emerging Tech

Parker Solar Probe makes a second orbit of the sun, captures solar wind on video

The Parker Solar Probe, launched last year, has completed its second orbit around the sun. To celebrate, the team responsible for the probe has released a video showing solar winds in action.
Posted By Georgina Torbet
Bathymetric Explorer and Navigator (BEN) in the middle of the ocean searching for Amelia Earhart
Emerging Tech

Wreckage, reefs, and robots: The high-tech quest to find Amelia Earhart’s plane

Over 80 years ago, American aviation pioneer Amelia Earhart disappeared while trying to fly around the world. Now an autonomous water-based robot could help find some answers. Here's how.
Posted By Luke Dormehl
elon musk starman space adventure spacex falcon heavy
Cars

Starman on Tesla Roadster makes first orbit around sun, braces for loneliness

Starman and his Tesla Roadster, sent by SpaceX to outer space last year, have completed their first orbit around the sun. The people on Earth may be able to catch a glimpse of the cherry-red electric vehicle on November 2020.
Posted By Aaron Mamiit
tinder sanders bernie
Emerging Tech

Bernie Sanders calls for a ban on police use of facial recognition

Democratic presidential hopeful Sen. Bernie Sanders is calling for a complete ban on the use of facial recognition by law enforcement as part of the new criminal justice reform plan he introduced this weekend.
Posted By Emily Price
tesla panasonic low profile solar panels 1
Emerging Tech

On the fence about buying solar panels? Tesla now offers them for rent

With solar rental Tesla says “customers get the best from solar power — clean, cheap energy to power homes and vehicles — without upfront costs or decades-long agreements. In fact, customers can get solar power with one click, instead…
Posted By Emily Price
starship delivery robots line up
Emerging Tech

Autonomous robot deliveries are coming to 100 university campuses in the U.S.

Autonomous robot company Starship Technologies has announced that it will expand its food delivery services to 100 university campuses around the United States over the next 24 months.
Posted By Luke Dormehl
India GSLV Mark III-M1 rocket Chandrayaan-2 moon orbiter
Emerging Tech

India’s lunar mission just got one giant leap closer to the moon

India’s uncrewed lunar mission entered into the moon’s orbit on Tuesday, bringing it within striking distance of its historic goal, according to an announcement from the Indian Space Research Organisation.
Posted By Allison Matyus
anymal c robot release ml pipes action
Emerging Tech

Move over Spot. There’s a new robo-dog on the block — and it’s waterproof

ANYbotics, the Swiss robotics company behind the four-legged, oil rig-inspecting ANYmal robot, has released its next-generation quadruped robot dog successor. Check it out in action.
Posted By Luke Dormehl
elon musk boring company rock
News

Elon Musk likes Newt Gingrich’s $2 billion moon base prize

SpaceX CEO Elon Musk really likes former House Speaker Newt Gingrich's idea to award a $2 billion prize to anyone who can build and run a base on the moon. Gingrich proposed a contest to see who can establish and run the first lunar base. 
Posted By Allison Matyus