You thought hackers were a royal pain in the butt before? Well, if you own a Satis digital toilet, you’re really going to dislike them now.
As more homes go ‘hi-tech’, household appliances and fixtures can now be digitally controlled by using a laptop or smartphone. Coming home to find that some hacker has defrosted your fridge and freezer while you were at work is bad, but waking up to do your daily defecation to find the toilet’s bidet feature activates spontaneously is really, really bad (or hilarious, depending who it happens to).
That’s right, according to the information security firm, Trustwave, the Satis toilets made by Inax have a Bluetooth security vulnerability that allow an unauthorized user to control the toilet. Supposedly, the Satis toilet can be controlled remotely through the My Satis app for Android over a Bluetooth connection. The PIN to pair the app with the toilet is hard-coded into the app as “0000”0000″, which makes it possible for anyone to pair the app on their phone with the toilet.
There is a limitation though. The person would have to be within range of the Satis toilet at some point in order to pair the device. In a consumer advisory, Trustwave warns: “An attacker could simply download the ‘My Satis’ application and use it to cause the toilet to repeatedly flush, raising the water usage, and therefore utility cost to its owner. Attackers could cause the unit to unexpectedly open/close the lid, or activate the bidet or air-dry functions, causing discomfort or distress to user.” Now, just how crappy is that?