Many Bluetooth smart locks are hackable, researchers find

By Shawn Knight ยท 4 replies
Aug 9, 2016
Post New Reply
  1. Bluetooth-powered locks are readily available from a number of companies to complement or begin building out your smart home portfolio. While primarily designed for convenience sake, a couple of security researchers have discovered that a large number of Bluetooth smart locks are susceptible to hacks.

    This is quite alarming when you consider some smart door locks are the first line of defense when it comes to keeping intruders out of your home.

    As Tom’s Guide reports, electrical engineer and smart home researcher Anthony Rose and partner Ben Ramsey said during the recent Def Con security conference that 12 of the 16 Bluetooth smart locks they tested could be opened when attacked wirelessly. The publication notes that models from companies including Ceomate, Elecycle, iBlulock, Quicklock, Plantraco, Vians, Okidokey and Mesh Motion contained vulnerabilities that ranged from incredibly easy to moderately difficult to exploit.

    Worse yet, Rose said that nearly every vendor it contacted about the vulnerabilities in their products didn’t seem to care. Of the 12 they reached out to, only one bothered to reply, saying they were aware of the issue but weren’t going to fix it. Nice.

    The duo said four of the locks they tested transmitted their password in plaintext to paired smartphones meaning anyone with a low-cost Bluetooth sniffer could grab it with ease. Others could easily be tricked into submission while one model was forced into an error state, thus opening the lock.

    Only four locks including models from August and Kwikset withstood testing. Each offered features like two-factor authentication, properly used encryption and didn’t have a hardcoded password buried in their software.

    Image courtesy Alexander Kirch, Shutterstock

    Permalink to story.

  2. Timonius

    Timonius TS Evangelist Posts: 647   +58

    Doesn't matter what kind of lock or security you have. It's all 'hackable'.
    Geforcepat likes this.
  3. cliffordcooley

    cliffordcooley TS Guardian Fighter Posts: 9,713   +3,691

    Who knows you, that is capable of hacking your Bluetooth? Call them now, and tell them the NSA is watching their every move. Make them believe they are on some special watch list. Problem solved! They will be so paranoid, they will never think about hacking your lock.

    Or get a sign that states the device is protected from tampering, by explosive plates in the floor and wall around the device. And they will never want to risk it.
  4. bexwhitt

    bexwhitt TS Guru Posts: 354   +71

  5. Geforcepat

    Geforcepat TS Booster Posts: 140   +16

    Surprise! /

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...