Ride the Lightning

Got an Annoying Neighbor? Hack His Toilet!

August 8, 2013

"Smart toilets," which I will never own after reading this story, can be hacked. Information security firm Trustwave issued an advisory on August 1st about a Bluetooth security vulnerability in Inax's Satis automatic toilet. The story was picked up by Ars Technica.

Some of the functions of the Satis can be remotely controlled from an Android app called "My Satis" using a Bluetooth connection. The PIN which pairs with the toilet is "0000"- it is hard-coded into the app, so someone using the My Satis app can control any Saris toilet.

Here's what the advisory, which cracked me up, envisions: "An attacker could simply download the 'My Satis' application and use it to cause the toilet to repeatedly flush, raising the water usage and therefore utility cost to its owner. Attackers could cause the unit to unexpectedly open/close the lid, [or] activate bidet or air-dry functions, causing discomfort or distress to user."

I really want to see the YouTube video of this prank in action. 🙂