Medeco M3 High Security Locks Vulnerable?
The supposed gold standard for door locks has been shown to be pretty easily defeated. Hackers at DefCon the general hacking of all things convention showed that not only is it possible but actually fairly easy to defeat these locks that protect some pretty important places, the White house anyone?
Using a combination of a paperclip and a cut up credit card these locks can be defeated. In this first video there is a detailed presentation of the vulnerabilities of this lock.
In the next video we see a 12 year old girl bumping the lock (Courtesy of Wired)
Most concerning about this problem is that these locks can apparently be comprimised with only the barest of essential tools, a shim and a modified cheap screwdriver. Again from Wired:
“In addition to bumping and picking Medeco’s M3 cylinder locks, the researchers also succeeded in the last few weeks to crack a Medeco M3 deadbolt lock — considered to be one of the highest security locks in the world. They showed Wired News how to open the deadbolt in less than a minute using nothing more than a modified $2 screwdriver and a wire shim. They asked, however, that we not publish the details.
“Medeco invented the pin tumbler lock that lifts and twists the pins,” says Marc Weber Tobias, one of the researchers and an investigative lawyer and author. “It’s a brilliant idea and basically these are unpickable locks. But we can pick them. Everybody in my profession has been trying to break these for 30-35 years. And frankly, I can’t believe that we’ve come up with this and nobody else has.””
I have only one building with any Medeco locks on it and I don’t just count on them for security as this site also has cameras and security, but I know of buildings that do and it is those sites that need to reevaluate their security plans in light of this new information.
As always I thank you for your time and interest. Please take the time to Digg, Stumble Upon or add to the other social network of your choice to help me spread the word about these issues. Please forward any questions or suggestions to: email@example.com