Submitted via IRC for SoyCow1984
Alarm System Defeated By $2 Wireless Dongle, Nobody Surprised
The item in question is the SimpliSafe alarm system, a fully wireless, install-it-yourself system available online and from various big-box retailers. We’ve covered the system’s deeply flawed security model before, whereby SDRs can be used to execute a low-effort replay attack. As simple as that exploit is, it looks positively elegant next to [LockPickingLawyer]’s brute-force attack, which uses a $2 RF remote as a jammer for the 433-MHz wireless signal between sensors and the base unit.
With the remote in close proximity to the system, he demonstrates how easy it would be to open a door or window and enter a property guarded by SimpliSafe without leaving a trace. Yes, a little remote probably won’t jam the system from a distance, but a cheap programmable dual-band transceiver like those offered by Baofeng would certainly do the trick. Not being a licensed amateur operator, [LockPickingLawyer] didn’t test this, but we doubt thieves would have the respect for the law that an officer of the court does.
(Score: 3, Insightful) by sjames on Monday August 26 2019, @06:20PM
The honeymoon period may be ending for that sort of alarm system. The average crook isn't that bright. The smart ones don't break into houses and cars, they develop tools and techniques that they sell to the dumb ones. It doesn't take a high IQ to use a jammer once the knowledge is out there.
Just like the keyless entry situation for cars. It takes actual knowledge and creative thinking to figure out the keyfob relay attack, but once done, any idiot can buy the transceiver pair and use it.