Merry Christmas to the hacker community from LonWorks

Jan. 1, 2000

According to Wikipedia, as of 2010 more than 90 million devices were installed with LonWorks technology. Manufacturers in a variety of industries have adopted the platform as the basis for their product and service offerings. As of December 23, 2013, the LonWorks Network Communication and Interface Guide is available on the Internet. The user guide provides guidance on resetting the security settings to the default condition. Moreover, it provides the default user ID and password. What more could a hacker wish for?

 

According to Wikipedia, as of 2010 more than 90 million devices were installed with LonWorks technology. Manufacturers in a variety of industries have adopted the platform as the basis for their product and service offerings. Statistics as to the number of locations using the LonWorks technology are scarce, but it is known that products and applications built on top of the platform include such diverse functions as:

- embedded machine control,

- municipal and highway/tunnel/street lighting,

- heating and air conditioning systems (HVAC),

- building lighting,

- elevator/escalator controls,

- irrigation,

- stadium lighting and speaker control (is the NFL paying attention for the Super Bowl?)

- security systems,

- fire detection and suppression,

- theater lighting and stage,

- Smart Grid - advanced metering, demand response, and distribution automation,

- liquor dispensing,

- livestock management,

- medical instrumentation,

- office machine automation,

- supermarket checkout,

- patient monitoring,

- highway toll collection,

- restaurant automation,

- slot and vending machine control,

- circuit board diagnostics,

- semiconductor fabrication plants,

- paper manufacture,

- high speed printing,

- asset tracking,

- buses, subways, passenger, and freight rail transportation – propulsion, braking, signage, lighting , and

- newborn location monitoring and alarming.

As of December 23, 2013, the LonWorks Network Communication and Interface Guide, Software Release 6.0 dated January 30, 2013 is available on the Internet. The user guide provides guidance on resetting the security settings to the default condition. Moreover, it provides the default user ID and password.

What more could a hacker wish for?

Joe Weiss