Vulnerability in KNX Standard for Residential and Commercial Building Automation
Article content
17,444 Vulnerable Locations
We conducted a security scan and established that there are 17,444 buildings worldwide that can be relatively easily accessed and controlled by a hacker, because their systems are directly connected to the internet.
Germany and Spain top the list with 1,821 and 1,813 locations respectively. The Netherlands is in third place with 1,322 affected locations, with Amsterdam leading the list within the country for the most buildings with a KNX system. Vulnerable building management systems based on the KNX standard are also found in China, the United States, and Russia.
How to Fix the Vulnerability
The KNX network becomes vulnerable when the internal network is connected to the internet. Users of KNX systems can fix the vulnerability relatively easily themselves by not opening the port in the system or by adjusting the firewall settings.
It appears that many KNX users as well as professional installers of KNX-based systems are not yet fully aware of the risks and/or do not know how to install KNX devices securely.
KNX Scan Tool
Want to check whether your home or office building is affected by this vulnerability? Use the online tool www.knxscan.com that we developed based on our security scan to find out whether you need to take action.