190
submitted 3 months ago by girlfreddy@lemmy.ca to c/news@lemmy.world

Resorts World Las Vegas, a hotel that is hosting attendees of the DEF CON hacking conference this week, will perform daily inspections of rooms including those displaying a privacy sign, according to a letter from the hotel given to guests. An information security professional posted a photo of the letter online. Members of the cybersecurity community have reacted with a mix of anger and disappointment on social media.

“Welcome, and thank you for choosing Resorts World Las Vegas. We are pleased that you have joined us, as you have chosen to stay with us for relaxation, fun and excitement!” the message, written on hotel letterhead, reads.

“As you may or may not know, a well-known hacking convention will be held in Las Vegas during your stay,” it adds. DEF CON runs from August 8 to 11, with many attendees already in the city for the separate Black Hat cybersecurity conference or other events. “We remain committed to our guests’ safety and understand the utmost importance of cybersecurity, as well.”

The letter then describes what staff at Resorts World Las Vegas will be doing: “In an effort to increase the safety of our guests, we will be conducting scheduled, brief visual and non-intrusive room inspections daily beginning Monday, August 5. Rooms with a privacy sign will be included as part of the inspection process.”

top 50 comments
sorted by: hot top controversial new old
[-] Vent@lemm.ee 171 points 3 months ago

But... it's cybersecurity. What is a "brief visual and non-intrusive room inspection" even looking for? Anonymous masks? Green terminals with scrolling text? People shouting "enhance" and/or "I'm in"?

[-] adespoton@lemmy.ca 69 points 3 months ago

Possibly they’re looking for people assembling their sniper rifles, or trying to ensure that no hotel room gets gutted to become some group’s command HQ with 50 amps of electronics with no shielding sprouting from the wall sockets and clean (de)soldering stations set up alongside an electron microscope?

I know what’s gone on in those hotel rooms in past years, and a lot of it is stuff I wouldn’t want to have to deal with as a hotelier.

[-] Warp10Lizard@startrek.website 29 points 3 months ago

He's in a hoodie, take him out!

load more comments (1 replies)
[-] friend_of_satan@lemmy.world 27 points 3 months ago

Answering machines, scrabble boards, camouflage laptops, rollerblades.

[-] JonEFive@midwest.social 8 points 3 months ago

HACK THE PLANET! THEY'RE TRASHING OUR RIGHTS!

load more comments (1 replies)
load more comments (1 replies)
[-] xmunk@sh.itjust.works 26 points 3 months ago

Captain Crunch whistles.

I've heard you can bankrupt financial institutions with one of those.

[-] PM_Your_Nudes_Please@lemmy.world 13 points 3 months ago

For those who missed the joke: Payphone hackers (often called phreakers) discovered that a toy whistle from Captain Crunch cereal boxes could easily be modified to play the specific tone that payphones listened for to indicate that a coin had been inserted. Basically, the phone company didn’t know when a coin has been put in, without some sort of signal from the pay phone. And typically, the only lines run to the phone were the actual phone line. So the pay phone would play a specific 2600Hz tone, indicating that a coin was inserted.

Using this toy whistle, you could essentially use payphones for free, and it was entirely untraceable until the company emptied the phone and counted the coins in the collection bin. In an era when cellphones were only for millionaires and were the size of literal bricks the world was almost entirely dependent on pay phones unless you were at home. So this was a major discovery for phreaks, who quickly began experimenting to see what other tones may be used to send signals.

Naturally, the phone companies panicked, and quickly had the cereal company pull the toys from future boxes.

[-] bradorsomething@ttrpg.network 6 points 3 months ago

It didn’t need modification, it was naturally the right pitch.

[-] finestnothing@lemmy.world 17 points 3 months ago

I like to say enhance before opening the full file from a thumbnail in feh when showing my wife pictures. She hates it and I will not stop

load more comments (1 replies)
load more comments (1 replies)
[-] scytale@lemm.ee 64 points 3 months ago* (last edited 3 months ago)

How can an inspection be non-intrusive if it consists of physically entering a guest's room? As an aside, I was hoping I could attend this year but my company said there wasn't enough budget 🙄. Whenever I attend Defcon or Blackhat, I stay in hotels not directly within the vicinity of the con because of all the shenanigans.

load more comments (25 replies)
[-] bradorsomething@ttrpg.network 49 points 3 months ago

Las Vegas always has their SWAT team on standby during Defcon, in case they need to shoot the internet.

load more comments (1 replies)
[-] foggy@lemmy.world 45 points 3 months ago* (last edited 3 months ago)

How long until the CEO of this hotel gets an email to his personal email address containing a .zip of all of their customer's PII?

[-] Duamerthrax@lemmy.world 13 points 3 months ago

How long until the manager of this hotel gets exposed for putting cameras in the hotel room bathrooms?

load more comments (2 replies)
[-] jordanlund@lemmy.world 42 points 3 months ago

"scheduled" - We're telling you when we're coming, hide yo' shit!

OTOH - WTF do they think they're looking for? I don't expect hotel staff to know a nefarious device from a multi-port USB hub.

[-] ptz@dubvee.org 26 points 3 months ago* (last edited 3 months ago)

"Hey, that laptop's not running Windows.....[calls in SWAT team]"

[-] gedaliyah@lemmy.world 42 points 3 months ago

Hotel clerk: Sir, is that dangerous equipment you're setting up?

Hacker: It's just a WiFi coconut, a rubber duck, a flipper zero, and a few IMSI catchers.

Clerk: Okay then. So, carry on I guess?

[-] bradorsomething@ttrpg.network 7 points 3 months ago

“Sir, you dropped your honeypot!”

[-] Wahots@pawb.social 39 points 3 months ago

They are gonna find sooooo many Bad Dragon dildos.

load more comments (4 replies)
[-] 4am@lemm.ee 36 points 3 months ago* (last edited 3 months ago)

Would be great to find out that this wasn’t a real notice, someone just social-engineered hotel letterhead from three different hotels and printed up something inflammatory to catch the community’s attention.

They put the fake ATMs in the lobby and the "free wifi" on balloons in the vendor hall anyway.

Also, if you vend or buy anything there, stick to cash.

[-] _stranger_@lemmy.world 9 points 3 months ago

Heh, I remember that. I still have my defcon 17 Human badge somewhere.

[-] Nasan@sopuli.xyz 31 points 3 months ago

For anyone else curious which hotels are affected by this measure:

  • Hilton Las Vegas
  • Conrad Las Vegas
  • Crockfords Las Vegas
load more comments (2 replies)
[-] Bahnd@lemmy.world 22 points 3 months ago

They appear to be starting this before the event, so something has them spooked (could just be the con full of spooks). Also with the volume of technical know-how that is going to be in attendance I think

  1. There is no way someone wont spot funny bususiness if a group or indivudal is trying to pull something.

  2. If a visual inspection is all their doing (unlikely) then this amounts to nothing more that security theatre. If they are being more invasive the attendees will know (its DEF CON for fuck sake).

  3. This may just prompt the attendees to book at another resort next year and hurt the hotel in the long run, seeing as this is very close to the opening of the con I dont see many groups changing their booking in time.

[-] aramis87@fedia.io 14 points 3 months ago

If they are being more invasive the attendees will know

With this announcement, I fully expect every DefCon room to be running their own security cameras.

load more comments (1 replies)
[-] Drusas@kbin.run 14 points 3 months ago

If I learned this after I had booked, I would be expecting a refund as well as compensation for missing the conference if I couldn't find alternative accommodation.

[-] FlyingSquid@lemmy.world 18 points 3 months ago

They did know announcing this ahead of time is just begging to have their system hacked and taken down, right?

load more comments (4 replies)
[-] adam_y@lemmy.world 15 points 3 months ago

Yeah, OK, time to hack their schedule.

Look on your list, you've already been in here today.

This is just a tutorial level.

[-] robocall@lemmy.world 14 points 3 months ago

I think they started doing room checks in Vegas after that one guy sniped the music festival. https://en.wikipedia.org/wiki/2017_Las_Vegas_shooting

[-] ikidd@lemmy.world 13 points 3 months ago

Well, I found the CTF targets.

[-] dejected_warp_core@lemmy.world 10 points 3 months ago

brief visual and non-intrusive room inspections daily [...] Rooms with a privacy sign will be included as part of the inspection process

The contradictions in this phrasing are giving me a headache.

Also: this is DEF CON. The first mistake was telling them you were coming.

[-] tilefan@lemm.ee 10 points 3 months ago

have past attendees done something to make administration feel this is necessary?

[-] bradorsomething@ttrpg.network 7 points 3 months ago

Well I was once at a dinner there, where someone had to leave to bail out a friend who found an open traffic box and started playing. We’re not angels.

But honestly they should shut up about this and only search the rooms of suspected foreign agents, and with due process.

load more comments (2 replies)
[-] meco03211@lemmy.world 7 points 3 months ago

People in here speculating about them looking for "hacker shit" and I'm assuming it's sex trafficking shit.

[-] nolefan33@sh.itjust.works 22 points 3 months ago

It's probably guns. That guy who shot all those people at the music festival in Vegas snuck a small arsenal into his room and they didn't notice until the shooting.

[-] friend_of_satan@lemmy.world 20 points 3 months ago

If that were the case, why not do this for every conference? Same question for sex trafficking. Are hackers more violent or sexually exploitative than every other subculture?

load more comments (2 replies)
load more comments (4 replies)
[-] Melody@lemmy.one 7 points 3 months ago
[-] partial_accumen@lemmy.world 7 points 3 months ago* (last edited 3 months ago)

"Evil maid" becomes more than a metaphor.

load more comments
view more: next ›
this post was submitted on 05 Aug 2024
190 points (98.0% liked)

News

23376 readers
2529 users here now

Welcome to the News community!

Rules:

1. Be civil


Attack the argument, not the person. No racism/sexism/bigotry. Good faith argumentation only. This includes accusing another user of being a bot or paid actor. Trolling is uncivil and is grounds for removal and/or a community ban. Do not respond to rule-breaking content; report it and move on.


2. All posts should contain a source (url) that is as reliable and unbiased as possible and must only contain one link.


Obvious right or left wing sources will be removed at the mods discretion. We have an actively updated blocklist, which you can see here: https://lemmy.world/post/2246130 if you feel like any website is missing, contact the mods. Supporting links can be added in comments or posted seperately but not to the post body.


3. No bots, spam or self-promotion.


Only approved bots, which follow the guidelines for bots set by the instance, are allowed.


4. Post titles should be the same as the article used as source.


Posts which titles don’t match the source won’t be removed, but the autoMod will notify you, and if your title misrepresents the original article, the post will be deleted. If the site changed their headline, the bot might still contact you, just ignore it, we won’t delete your post.


5. Only recent news is allowed.


Posts must be news from the most recent 30 days.


6. All posts must be news articles.


No opinion pieces, Listicles, editorials or celebrity gossip is allowed. All posts will be judged on a case-by-case basis.


7. No duplicate posts.


If a source you used was already posted by someone else, the autoMod will leave a message. Please remove your post if the autoMod is correct. If the post that matches your post is very old, we refer you to rule 5.


8. Misinformation is prohibited.


Misinformation / propaganda is strictly prohibited. Any comment or post containing or linking to misinformation will be removed. If you feel that your post has been removed in error, credible sources must be provided.


9. No link shorteners.


The auto mod will contact you if a link shortener is detected, please delete your post if they are right.


10. Don't copy entire article in your post body


For copyright reasons, you are not allowed to copy an entire article into your post body. This is an instance wide rule, that is strictly enforced in this community.

founded 1 year ago
MODERATORS