* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Tuesday, June 24, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    Safety concerns in Deep Ellum create apprehension as the entertainment district gains visitors – CBS News

    Safety Concerns Surge Amid Deep Ellum’s Booming Popularity and Growing Crowds

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Promising Technology Stocks To Follow Today – June 22nd – MarketBeat

    Top Technology Stocks to Watch Today – June 22nd

    Technology Convergence Report 2025 – The World Economic Forum

    Technology Convergence Report 2025 – The World Economic Forum

    How AI can help make cities work better for residents – MIT Technology Review

    How AI can help make cities work better for residents – MIT Technology Review

    Tech Champions with Leo Bletnitsky of Healthy Technology Solutions – Buzz Media Group

    Meet Tech Champion Leo Bletnitsky of Healthy Technology Solutions

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    Safety concerns in Deep Ellum create apprehension as the entertainment district gains visitors – CBS News

    Safety Concerns Surge Amid Deep Ellum’s Booming Popularity and Growing Crowds

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Promising Technology Stocks To Follow Today – June 22nd – MarketBeat

    Top Technology Stocks to Watch Today – June 22nd

    Technology Convergence Report 2025 – The World Economic Forum

    Technology Convergence Report 2025 – The World Economic Forum

    How AI can help make cities work better for residents – MIT Technology Review

    How AI can help make cities work better for residents – MIT Technology Review

    Tech Champions with Leo Bletnitsky of Healthy Technology Solutions – Buzz Media Group

    Meet Tech Champion Leo Bletnitsky of Healthy Technology Solutions

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

3 million doors open to uninvited guests in keycard exploit

March 24, 2024
in Technology
3 million doors open to uninvited guests in keycard exploit
Share on FacebookShare on Twitter

Around 3 million doors protected by popular keycard locks are thought to be vulnerable to security flaws that allow miscreants to quickly slip into locked rooms.

Security researchers developed an exploit that applies to various Saflok keycard locks made by Swiss security company dormakaba, ones that are prevalent in hotels around the world, as well as properties of multiple occupancy.

The researchers who worked on the exploit, dubbed “Unsaflok,” said more than 3 million hotel locks across 131 countries are affected.

Lennert Wouters, Ian Carroll, rqu, BusesCanFly, Sam Curry, sshell, and Will Caruana reported the vulnerabilities to dormakaba in September 2022 and disclosed them this week.

Saflok MT and Saflok RT Plus are the most common models people may have encountered on their travels, although all locks using the Saflok system are vulnerable – these include door locks, and the keycard readers used in elevators and parking garages.

A keycard from the property an intruder wants to break into is required to pull off the attack. This could be a valid card such as one issued to the intruder’s own hotel room, or even an expired one swiped from the express checkout deposit bin.

From there, two cards would need to be created – one to rewrite the data on the lock and another to open it, the researchers explained to Wired. This could all be done using commercially available equipment, including a Flipper Zero or even an NFC-capable Android phone, and a few MIFARE Classic cards.

It would also require the intruders to reverse engineer the software used by hotel front desk staff to reprogram keycards to locks. Hotels that use these locks, of which there are more than 13,000 around the world, typically use System 6000 or Ambience for the management of keycards, researchers said. 

El Reg asked dormakaba to comment, and we’ll add that in if we hear back. According to the researchers’ writeup on Unsaflok, the manufacturer started working on a fix in November 2023, more than a year after the vulnerabilities were discovered.

That fix has now been developed, but apparently the process of getting these locks updated, or in some cases replaced entirely, is a bit of a chore. That’s illustrated by the rate of upgrades so far, which stands at just 36 percent of all affected locks.

It’s not just the door locks that need upgrading – the hotel software also needs upgrading, as do the keycard encoders, and the keycards themselves. The researchers said the keycards may actually be a giveaway to anyone wanting to know if their lock is free from forgeries.

Hackers remotely start, unlock Honda Civics with $300 tech

Key to success: Tenants finally get physical keys after suing landlords for fitting Bluetooth smart-lock to front door

We don’t want to be Latch key-less kids: NYC tenants sue landlords for bunging IoT ‘smart’ lock on their front door

Hotel, motel, Holiday Inn? Doesn’t matter – they may need to update their room key software

“It is not possible to visually tell if a lock has been updated to fix these vulnerabilities,” they said. “You may be able to tell if a hotel has been through the upgrade process if the guest keycards are using MIFARE Ultralight C cards instead of MIFARE Classic.”

NFC reader apps available on Android and iOS can present this kind of data, and well-informed front desk staff may be able to let guests know too.

“Note that this information only applies to dormakaba Saflok systems; several other lock manufacturers use MIFARE Classic keycards and are not affected by the Unsaflok vulnerability. Nevertheless, the use of MIFARE Classic in a security-sensitive application is not recommended.”

There’s no available evidence to suggest that these locks have been bypassed in historical intrusion attempts, however, the vulnerabilities have been present in Saflok systems for more than 36 years … so that’s a pretty long window in which they could have been exploited before.

While it is possible to detect for unauthorized intrusions by auditing each lock’s entry and exit logs, the researchers said due to the nature of the vulnerability, these logs could be misattributed to a different keycard or even a staff member.

Full details of the vulnerabilities, which are chained together to forge these keycards, haven’t been revealed yet and won’t be for some time out of fears that an explosion in intrusions will take place while hotels upgrade.

“We are not planning on sharing a full proof of concept at this time due to the potential impact to hotels and guests,” the researchers said. “We plan on sharing additional technical details of the vulnerability in the future.”

Unsaflok certainly isn’t a first-of-its-kind type of exploit, as other security whizzes have broken into other keycard systems before.

Back in 2018, before its enterprise arm split off to WithSecure, F-Secure publicized exploitable flaws in VingCard’s Vision system, which is also used to secure millions of rooms worldwide, although only a small proportion of these were thought to be exploitable.

Going back to 2012, researchers demonstrated a way to break into Onity locks too during that year’s Black Hat event – the same event that saw Unsaflok flaunted in 2022, albeit behind the closed doors of a private security competition to which the researchers were invited. ®

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : The Register – https://go.theregister.com/feed/www.theregister.com/2024/03/22/tap_and_go_straight_to/

Tags: DOORSMilliontechnology
Previous Post

‘Kavya Maran Moye Moye Moment’, Social Media Reacts On SRH Owner’s Roller-Coaster Of Emotions After Team’s Defeat In IPL 2024

Next Post

Uncle Sam wants to know how big airlines use passenger data

China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

June 24, 2025
CBS Sports, Pac-12 extend partnership with network becoming primary partner as league eyes expansion – CBS Sports

Pac-12 and CBS Sports Strengthen Partnership Ahead of Thrilling League Expansion

June 24, 2025
Clay Minerals From Mars’ Most Ancient Past? – NASA Science (.gov)

Unveiling Clay Minerals from Mars’ Most Ancient Past

June 24, 2025

Retro Translucent Lifestyle Sneakers – Trend Hunter

June 24, 2025
The World’s 50 Best Restaurants Announces Its 2025 List – The New York Times

The World’s 50 Best Restaurants Announces Its 2025 List – The New York Times

June 24, 2025
Former INSS head Manuel Trajtenberg: Israeli economy rises in Iran war – The Jerusalem Post

Former INSS head Manuel Trajtenberg: Israeli economy rises in Iran war – The Jerusalem Post

June 24, 2025
Panel reacts as VP Vance downplays risk of foreign entanglement in Iran: ‘Back then we had dumb presidents’ – CNN

Panel reacts as VP Vance downplays risk of foreign entanglement in Iran: ‘Back then we had dumb presidents’ – CNN

June 24, 2025
Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

June 23, 2025
Atlanta Sports: High school, college and pro sports from the AJC – AJC.com

Atlanta Sports Update: Exciting High School, College, and Pro Highlights

June 23, 2025
US judge blocks slashing of universities’ federal funding from National Science Foundation – Reuters

US Judge Halts Cuts to Federal Funding for Universities from National Science Foundation

June 23, 2025

Categories

Archives

June 2025
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
30 
« May    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (697)
  • Economy (714)
  • Entertainment (21,611)
  • General (15,536)
  • Health (9,753)
  • Lifestyle (719)
  • News (22,149)
  • People (716)
  • Politics (721)
  • Science (15,932)
  • Sports (21,211)
  • Technology (15,700)
  • World (694)

Recent News

China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

June 24, 2025
CBS Sports, Pac-12 extend partnership with network becoming primary partner as league eyes expansion – CBS Sports

Pac-12 and CBS Sports Strengthen Partnership Ahead of Thrilling League Expansion

June 24, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version