03
Aug
satis

Imagine, if you will, that you've just checked in to a hotel in Tokyo for an extended vacation. Weary from the long train and cab rides from the airport, you make use of the bathroom, noting the famously futuristic facilities adorning the electronic toilet. As you take care of business, you hear a laughing, sniggering sound from the other side of the wall - clearly someone in the next room is having a good time. All of a sudden, you are having a very bad time indeed, as a jet of water unexpectedly invades your nether regions. A peal of laughter erupts from the other room, just as the eruption in the toilet ceases.

This nightmarish scenario is probably being enacted all over Japan this weekend. Software security firm Trustwave has published some interesting information on the Inax Satis series of Bluetooth-enabled toilets, namely that they all come with the common PIN code of "0000" hardcoded into both the device and its companion app. This allows anyone with the My Satis app and a handy Android device to control any of said toilets at will... including the bidet (cleaning water stream) and blow-dryer functions that are a staple of Japanese bathroom fixtures. Malicious users could close the lid or flush the toilet continuously. It will also allow anyone to access a detailed record of, ahem, deposits. Say what you will about the FBI and NSA, but even they generally draw the line at bathroom habits.

According to the published security advisory, Trustwave contacted the manufacturer three different times over the last two months to try and warn them of the inadvisability of a wide-open toilet authentication system, and received no response. It's pretty hilarious that there are toilets with companion apps in the first place (although not all that surprising that they come from Japan). But leaving the Bluetooth control open for anyone to access speaks of a security mindset that can only be described as "shitty."

Source: Trustwave via The Verge, The Atlantic

Jeremiah Rice
Jeremiah is a US-based blogger who bought a Nexus One the day it came out and never looked back. In his spare time he watches Star Trek, cooks eggs, and completely fails to write novels.
  • http://mwinter.in/ Yan Gabriel Minário

    Dat title.

  • Ricardo Kummel

    Where's the +1 to the article (not google, just a way to vote up)? :D

    • Mike Harris

      It's the little star right above the comment box (top of the comments section).

  • Mayoo

    First there were 3 shells, now this ... Future toilets are not going well

    • Jonathan Hamilton

      Nice Demolition Man reference. Leave it to the Japanese to want to control all the shit.

  • PamelaLibrarian

    This is hysterical!! Great post! :)

  • HitokiriX

    I'd probably be a shitty experience to be on the wrong end of that.

  • Neuropsychosis

    This would be better if it had water temperature control.

    Ice cold spray.

    • David Allen

      ^^ This just made my butt pucker.

    • Steve

      Some models do have water temperature controls, as well as strength.

  • Jason

    Going to Tokyo next week...

    Gonna mess around with this...

    • Mike Reid

      There's probably a law about that... fair warning...

    • Andrew

      From my experience, your typical Japanese hotel usually has a washlet, but they don't have bluetooth-enabled models.

  • Laborin_HK

    Laugh? I would totally scream:

    Water style! Water dragon jutsu!

  • http://www.youtube.com/user/rsrmean rMean

    "Say what you will about the FBI and NSA, but even they generally draw the line at bathroom habits."

    Are you sure? Now THAT'S a 'backdoor' :-D

  • Bronislav Shtrom

    Would go, just to say I can waterbend!

  • William556

    If it is wired, hackers will mess with it. Makes one feel all cozy about the smart grid, wired fridges, and TV's with cameras built in to "make you the remote control."

  • A.Noid

    What no toilet cam?

  • atbin

    thats disgusting