High-tech toilet gets hacker warning; nothing is safe

[Borg 386]

Seriously...is anything safe nowadays??? :sarc:

Security company Trustwave issued a warning about potential bathroom breaches of luxury Satis smart toilets from Lixil. The toilets can be controlled using an Android app, but the Bluetooth PIN is hard-coded to "0000." Just knowing that code number means the awesome power of the Satis could fall into evil hands. All a hacker would have to do is download the My Satis app, get in range, pair it to the toilet using the code, and flush away.

"Attackers could cause the unit to unexpectedly open/close the lid, activate bidet or air-dry functions, causing discomfort or distress to user," Trustwave cautions. Trustwave made several attempts to contact Lixil for a response, but the company has not yet commented on the issue.

The bigger mystery here may be why someone would want a remote control to flush a toilet, but it could be handy for absent-minded toilet users or germaphobes who want to minimize contact with the porcelain throne. With a starting price of around $2,400, you will pay for the privilege.

High-tech toilet gets hacker warning; nothing is safe | Security & Privacy - CNET News

 

[M1GU31]

Great new stuff we don't need and now possible for someone to harass you with a toilet controller...... I'm all for advancements but I seriously don't think we need smart toilets.

 

[severedsolo]

In all fairness! It wasn't exactly hacking, The toilets are bluetooth controlled, the use code was 0000 and (this is the best bit!) couldn't be changed. Also, the app worked on EVERY toilet of that make, not just your one. Asking for trouble if you ask me. BBC News - Luxury toilet users warned of hardware flaw

 

[NoN]

:roflmao:

Functions of the Satis—including the raising and lowering of its lid and operation of its bidet and flushing nozzles—can be remotely controlled from an Android application called "My Satis" over a Bluetooth connection. But the Bluetooth PIN to pair with the toilet—"0000"—is hard-coded into the app. "As such, any person using the 'My Satis' application can control any Satis toilet," the security advisory noted. "An attacker could simply download the 'My Satis' application and use it to cause the toilet to repeatedly flush, raising the water usage and therefore utility cost to its owner. Attackers could cause the unit to unexpectedly open/close the lid, [or] activate bidet or air-dry functions, causing discomfort or distress to user."
And you thought the only thing you had to worry about was dropping your phone into the toilet.

The hacker would not even make money out of it! Unless he's paid for!

I'm pretty glad i got rid of my phone few years ago. At least some have already modded their toilets onto something sleek!

Why aren't we all using Japanese toilets? They will come around...

 

[indianacarnie]

:roflmao:

Functions of the Satis—including the raising and lowering of its lid and operation of its bidet and flushing nozzles—can be remotely controlled from an Android application called "My Satis" over a Bluetooth connection. But the Bluetooth PIN to pair with the toilet—"0000"—is hard-coded into the app. "As such, any person using the 'My Satis' application can control any Satis toilet," the security advisory noted. "An attacker could simply download the 'My Satis' application and use it to cause the toilet to repeatedly flush, raising the water usage and therefore utility cost to its owner. Attackers could cause the unit to unexpectedly open/close the lid, [or] activate bidet or air-dry functions, causing discomfort or distress to user."
And you thought the only thing you had to worry about was dropping your phone into the toilet.

The hacker would not even make money out of it! Unless he's paid for!

I'm pretty glad i got rid of my phone few years ago. At least some have already modded their toilets onto something sleek!

Why aren't we all using Japanese toilets? They will come around...

The company I went to Japan to train with (CNC metal lathes/robotics) installed one of these for us (TWO individuals) as they thought we wouldn't use the factory ones. As an aside..... the factory workers would NOT go near it! They preferred these older models ........

 

[Rain08]

From what I can remember from reading an article, they can also now hack automobiles. They can change/reset the mileage of the vehicle, can change the needle's position of the fuel gauge, can abruptly tighten the seatbelts, can disable the brakes. I'll try to post the source later.

 

[ThrashZone]

As long as the reverse flush is not an option I don't see a real issue lol

 

[NoN]

From what I can remember from reading an article, they can also now hack automobiles. They can change/reset the mileage of the vehicle, can change the needle's position of the fuel gauge, can abruptly tighten the seatbelts, can disable the brakes. I'll try to post the source later.

That's not exactly the same cost, for an automobile crushed and toilets being flush but everything that might have high technology in, will pass through the hand of someone malicious!