Thousands of Vulnerable Electronic Lockers at Risk of Hacking
Recent research has uncovered a concerning vulnerability in electronic lockers commonly used in gyms, offices, and schools. Security researchers have demonstrated how these lockers can be accessed by criminals using inexpensive hacking tools to exploit administrator keys. This poses a significant security risk to various facilities that rely on these electronic lockers for secure storage.
Proof-of-Concept Attack on Digital Administrative Keys
At the Defcon security conference, researchers Dennis Giese and “braelynn” presented a proof-of-concept attack that highlighted the extraction and replication of digital administrative keys from electronic lockers. By targeting models from major manufacturers like Digilock and Schulte-Schlagbaum, the researchers illustrated the potential for widespread vulnerability across different types of electronic locks.
Exploiting Security Flaws and Extracting Key Data
The researchers were able to expose security flaws in electronic locks that allowed them to extract firmware and key data from the devices. By analyzing and manipulating the extracted data, they demonstrated how prepared hackers could abuse these vulnerabilities to gain unauthorized access to multiple lockers within a facility. This method of attack could have far-reaching implications for the security of organizations that rely on electronic locker systems.
Overall, the research underscores the importance of robust security measures in electronic locker systems to prevent unauthorized access and protect sensitive information stored within them.
