Security gap in wireless door locks from Abus
According to the German Federal Office for Information Security (BSI), a wireless door lock from Abus can be hacked. This would allow unauthorized access to buildings or apartments.
The German Federal Office for Information Security (BSI) warns in a communication against the use of the digital door lock HomeTec Pro CFA3000 from the manufacturer Abus. According to the BSI's findings, the vulnerability means that attackers in the vicinity can lock and unlock the wireless lock by exploiting the vulnerability and thus gain unauthorized access to buildings, offices or apartments.
The manufacturer confirmed the vulnerability to the BSI and stated that the product in question was a discontinued model that had been replaced by a successor model since March 2021. Among other things, the more secure, new model is equipped with an enclosed keycard and can be identified by a unique QR code. In addition, the packaging of the new model is printed with a Bluetooth logo.
The German Federal Office recommends replacing the product. The case shows once again that information security is a prerequisite for sustainable successful digitization, the BSI complains.
Source: BSI/Editorial Office
