The Henn na Hotel in Japan has bedside robots that serve as guest assistants. Several weeks ago, a researcher warned HIS Group that the bed-bots were easily accessible because they allowed unsigned code to run simply by tapping an NFC tag to the back of the robot’s head. This allowed a hacker to remotely watch and listen through cameras and microphones in the robot. He released a 0day vulnerability after the researcher had not heard back from the hotel for more than 90 days. The hotel then apologized and fixed the robots.
The researcher’s twitter also makes for a good read.
The report also includes a note from a cybersecurity specialist. Joseph Carson said such a vulnerability is not surprising and anything connected to the internet: a laptop, phone, webcam or hospitality robot, are all exposed to the risk of being hacked and abused.
Leave a Reply
You must be logged in to post a comment.