Bill: "It was closed, so I didn't want to sit in the car, so..." Me: "You picked the lock and went in anyway?" 😁 Bill: "[...] I spent my time walking around..." Me: 😞😅
Seems like 9 times out of 10, those quirks and gimmicks in the name of convenience, end up leaving vulnerabilities in security.. a good PSA and reminder for folks Bill, thanks!
Morning Bill! Great video, it's a shame that such a novel concept had such a glaring security flaw. It would have taken about 10 minutes more of R&D to prevent that bypass from working but oh well
Why didn't they make it only resettable from the inside? (Or at the very least have a hardened steel pin blocking the reset hole that can only be removed sideways out if the door when its open)
Customers cannot even manage not to screw up rekeying this thing. Add another step it's another thing they'll screw up. But on the bright side these things keep me busy and usually make for an easy interlude in my afternoon. I can even picture this hardened steel pin you're describing, first time the customer takes it out they promptly lose it, or they lose the special magnetic removal tool that comes with the lock between changes so I'm still called out to solve the problem. The reality is most of these locks are not designed for security from determined threats. The reason that you have locks that are easily changed is because employee turnover is high and former employees with keys are a likely source of mischief, and you think you can save money with some gimmick and cut out the locksmiths and other security professionals. Or more likely because some salesperson convince some decision-maker at corporate that this was just a brilliant idea
hey bill I've been looking for the bypass tool for this lock and i cant seem to find it anywhere. Do you know of any place that makes them or do i have to make my own..???
I know the inside of this cylinder... I can not picture in my head this bypass tool WILL live the same combination of the old key ... but overall.... great video.
The little nubs on the bypass tool line up with the component that sets the spring-loaded pins to a particular depth, and if the nubs are cut to the right height they support the pin so it rests exactly at the shear line. The big metal shim that you put into the keyway raises all the pins so that when inserted the bypass tool is definitely under that component. It took taking one apart for me to visualize how it worked
@@redbugg99 nope. The change component rests on but is not moved by the bypass tool. The distance from the top of the spring loaded pin to the little pin that holds those pins to a specific depth setting is the same regardless of what depth a pin is set for. There is no need to change the combination of the lock, and in fact unless you insert the change tool the lock combination will remain the same
I dont think the smartkey system is affected by this, but early smartkey locks had their own issue, where if enough turning force was applied to the keyway, the lock would open, but that method would cause internal damage to the lock, and also the lock could then fail at any time i dont know if the current smartkey locks are affected by this issue though EDIT: after a video I found, it seems this vulnerability I was talking about might still be present in the most recent smartkey locks
It's important to show an unskilled attack. Even if it isn't elegant. This isn't JUST about us getting wowed by Bill's skill at opening something. It is also about educating people. It *NEEDS* to be known that this design is worse than not using a lock. (People who think the lock protects them will act differently than if they had no lock. And since they EFFECTIVELY have no lock, that makes them less secure.) We *NEED* to shame companies who keep making them. Because we can't educate EVERYBODY, but we need these locks to stop being used for everyone's good. Yes, good for everyone. Other people using a lock like this hurts you indirectly. It doesn't just harm 'security'. It raises your insurance premiums and it sucks up tax money for investigations and legal battles. The result might be tiny, but enough tiny things together is still bad. You have to do what you can, when you can. Everybody benefits. Well...not good for criminals who are using these techniques to profit by harming others. And also not good for greedy companies that don't care if their products work as long as they make maximum profit off them...
You don't need the original, you just need the current key that is used in the lock. It's used to be a cheap way to re-key. I used the re-key on my front door's knob so it matches the regular deadbolt. No way I'm putting in a re-keyable deadbolt.
Not necessarily. Installing these locks, before the vulnerability was known, suggests a landlord who cares about security. It indicates they were security-conscious enough to want to be able to re-key locks between tenants and they would presumably have paid extra for this security feature compared to an ordinary lock.
ISSUE 1 : "Bypass" Set of Tools were produced without our consent in 2011 (by Petersen Mfg.) originally for Locksmiths to instantly gain entry in rare cases of user rekey error. He does not mention that our engineers implemented the necessary change to make the tools useless several years ago. And, there are ZERO instances known to us of these being used in a crime. Opening the door would have set off the intrusion alarm. If no alarm, it’s typically obvious that the door is an only means of entry. ISSUE 2 : Easy to pick. Not only did both Locksmiths take longer than they expected to pick during the making of the videos, they do not mention that nearly every lock can be picked by a skilled professional, including Level 1 Security Locks (U-Change and others used for multi-location chains are Level 2). Criminals at this level - unless they possess a working key, typically use prying tools to literally “break in”. Here is an interesting quote by “Bosnian Bill” (one of Locksmiths) from a NY Post Interview in 2015: “Showing Internet users how to pick locks could actually be aiding criminals," he conceded, but he claimed that most thieves don’t have the patience - or the time - to pick locks under stress. "And besides, lock pickers, he said, follow a code of honor.” The primary risk that door locks used by retail chains are intended to thwart is entry using a working key, whether it be: lost, stolen and/ or duplicated. Examples: a) A key holder makes a copy while employed to minimize suspicion in order for themselves and/ or an accomplice to gain entry at a later date b) A terminated key holder employee fails to return the key with similar bad intentions
Must be great working with taxpayer money, knowing that the $20 000 it's going to cost to swap out all your locks will just fall from the sky on demand...
![[1099] A Design Blunder In The Revolutionary “U-Change” Lock](http://i.ytimg.com/vi/mG9RHjC9rTM/mqdefault.jpg)
Bill: "It was closed, so I didn't want to sit in the car, so..."
Me: "You picked the lock and went in anyway?" 😁
Bill: "[...] I spent my time walking around..."
Me: 😞😅
Walking around re-keying every lock.
if he did he might need a lockpicking lawyer
Hi, Bill. The last time! I've heard that before. Thanks for sharing! Stay healthy!
I absolutely love your channel. I never miss a video
It's like a cross between a Masterlock and a Weiser Smartkey, amazing
Seems like 9 times out of 10, those quirks and gimmicks in the name of convenience, end up leaving vulnerabilities in security.. a good PSA and reminder for folks Bill, thanks!
I just installed some in a major brand retail outlet last week...
More like a collectors item (unique mechanism) rather than a actual security product lol
Shall do, Bill. Thanks for the reminder.
Great warning to people that have these locks! Also awesome video, just to remind people of convenience over security! Thanks Bill...!!!!!!!!!
Episode 22
"Someone's breaking into the house!"
"Well tell them to use that gizmo to make a key, I don't want to replace anymore damaged doors!"
Morning Bill! Great video, it's a shame that such a novel concept had such a glaring security flaw. It would have taken about 10 minutes more of R&D to prevent that bypass from working but oh well
And Kwikset's SmartKey system basically does that. They're substantially harder to pick, the newest ones are really annoying to tension.
I couldn't find the bypass kit on Petersons website, though. Or really available anywhere? Maybe I'm just overlooking it, though.
ive been searching up and down for it as well and it looks like its extinct :(
Why didn't they make it only resettable from the inside? (Or at the very least have a hardened steel pin blocking the reset hole that can only be removed sideways out if the door when its open)
Customers cannot even manage not to screw up rekeying this thing. Add another step it's another thing they'll screw up. But on the bright side these things keep me busy and usually make for an easy interlude in my afternoon. I can even picture this hardened steel pin you're describing, first time the customer takes it out they promptly lose it, or they lose the special magnetic removal tool that comes with the lock between changes so I'm still called out to solve the problem. The reality is most of these locks are not designed for security from determined threats. The reason that you have locks that are easily changed is because employee turnover is high and former employees with keys are a likely source of mischief, and you think you can save money with some gimmick and cut out the locksmiths and other security professionals. Or more likely because some salesperson convince some decision-maker at corporate that this was just a brilliant idea
How does this change the actual bitting of the lock? The pins of the lock are the same. I don't understand how it changes to fit the new key.
Is it just that brand or any re-keyable lock?
The Great Master Bill 👍👍👍
sadly kwikset has not really fixed the issue with their version either.
That lock came off the city buildings here I remember when they were removing them
Nice warning!, nice video!
Great video/Warning, I don't have one of those yet, but sooner or later I will find one!
I found the video on the bypass, but I couldn't find the one with the teardown. was interested in seeing the inside.
I'd definitely swap them out for an sfic system!
Sooooooooo al this lock needs really is security pins?
where can I get one for practice? thanks.
hey bill I've been looking for the bypass tool for this lock and i cant seem to find it anywhere. Do you know of any place that makes them or do i have to make my own..???
Where is okla. City at? Is that where they was made?
It's "OK Los Angeles" !
lol just kidding, Oklahoma City would be my guess.
what happens if you pick the lock open then insert the keying tool then remove it without a key? does the lock go to zero on all pins?
@Oneofdazzz
i was just thinking a similar thing but picking open put in tool and new key :-)
Since it's the last appearance I'm surprised all the other locks didn't break out in Auld Lang Syne. 😭
Bill what is the keyway American sc1 or what .😎????????
this is super interesting actually. i wonder how it works
I know the inside of this cylinder... I can not picture in my head this bypass tool WILL live the same combination of the old key ... but overall.... great video.
The little nubs on the bypass tool line up with the component that sets the spring-loaded pins to a particular depth, and if the nubs are cut to the right height they support the pin so it rests exactly at the shear line. The big metal shim that you put into the keyway raises all the pins so that when inserted the bypass tool is definitely under that component. It took taking one apart for me to visualize how it worked
@@spiffylocksmith1409 impossible to keep old combination if this is posible.
@@redbugg99 nope. The change component rests on but is not moved by the bypass tool. The distance from the top of the spring loaded pin to the little pin that holds those pins to a specific depth setting is the same regardless of what depth a pin is set for. There is no need to change the combination of the lock, and in fact unless you insert the change tool the lock combination will remain the same
@@spiffylocksmith1409 I have so many of this cylinders around.... I gonna have try this so I can be at peace in my head ... lol
That keyway is gnarly. What happened to that lock?!
Lots of use, most likely.
Used like a hooker on nickel night.
Gut it soo we can see how the innerts work . . .
Is it only this brand, or are all user-rekeyable systems vulnerable in this way? For example, Kwikset's Smartkey system?
I was thinking the same thing
I dont think the smartkey system is affected by this, but early smartkey locks had their own issue, where if enough turning force was applied to the keyway, the lock would open, but that method would cause internal damage to the lock, and also the lock could then fail at any time
i dont know if the current smartkey locks are affected by this issue though
EDIT: after a video I found, it seems this vulnerability I was talking about might still be present in the most recent smartkey locks
Maybe not that exact style bypass, but use this camera to make the key
ua-cam.com/video/QhrpIc4HmQA/v-deo.html
It's good we don't have those down here.
You should change your name to "Bully Bill" since you almost always go straight to bullying the lock 1st.
It's important to show an unskilled attack. Even if it isn't elegant.
This isn't JUST about us getting wowed by Bill's skill at opening something. It is also about educating people.
It *NEEDS* to be known that this design is worse than not using a lock.
(People who think the lock protects them will act differently than if they had no lock. And since they EFFECTIVELY have no lock, that makes them less secure.)
We *NEED* to shame companies who keep making them. Because we can't educate EVERYBODY, but we need these locks to stop being used for everyone's good.
Yes, good for everyone. Other people using a lock like this hurts you indirectly. It doesn't just harm 'security'. It raises your insurance premiums and it sucks up tax money for investigations and legal battles. The result might be tiny, but enough tiny things together is still bad. You have to do what you can, when you can. Everybody benefits.
Well...not good for criminals who are using these techniques to profit by harming others. And also not good for greedy companies that don't care if their products work as long as they make maximum profit off them...
Thank you for the P.S.A. Of course the land lord does not care - he/she will not loose any of their stuff ?
insurance?
That keyway is really messed up
I'm not sure what the risk is if you need the original key to change to a new key. You could lock your landlord out of the building.
You don't need the original, you just need the current key that is used in the lock. It's used to be a cheap way to re-key. I used the re-key on my front door's knob so it matches the regular deadbolt. No way I'm putting in a re-keyable deadbolt.
What I meant yeah. The locks are basically all made exactly the same and would have no idea what their first key was.
Who is the one downvote? This is great.
the lockmaker perhaps? or maybe the landlord of the area he was in lol
That lock was made way back before your average person could pick a lock.
average people have been picking locks as long as locks have been around XP
Its been used by many national chains in malls.
Guessing this crappy lock goes with a crappy door that is probably easier to kick in than bothering with the lock?
Not necessarily. Installing these locks, before the vulnerability was known, suggests a landlord who cares about security. It indicates they were security-conscious enough to want to be able to re-key locks between tenants and they would presumably have paid extra for this security feature compared to an ordinary lock.
@@beeble2003 Good point.
@@beeble2003 you're that landlord ... right 😁
@@adamsmith6594 Ha, no, just taking a step in his shoes. Which I was able to do literally, because of the crappy locks on his doors. 😉
Adam Smith “don’t judge a door by its lock” beeble2003 is offended you called him a crappy door and that lock is his best friend
Even Master Lock would be ashamed of that thing.
They probably own it....
Oklahoma City represent! lol
someone can play punk with you and reset the lock cylinder with a new set of key.... this cylinder design is BAD/POOR..
ISSUE 1 : "Bypass" Set of Tools were produced without our consent in 2011 (by Petersen Mfg.) originally for Locksmiths to instantly gain entry in rare cases of user rekey error.
He does not mention that our engineers implemented the necessary change to make the tools useless several years ago. And, there are ZERO instances known to us of these being used in a crime. Opening the door would have set off the intrusion alarm. If no alarm, it’s typically obvious that the door is an only means of entry.
ISSUE 2 : Easy to pick. Not only did both Locksmiths take longer than they expected to pick during the making of the videos, they do not mention that nearly every lock can be picked by a skilled professional, including Level 1 Security Locks (U-Change and others used for multi-location chains are Level 2).
Criminals at this level - unless they possess a working key, typically use prying tools to literally “break in”.
Here is an interesting quote by “Bosnian Bill” (one of Locksmiths) from a NY Post Interview in 2015:
“Showing Internet users how to pick locks could actually be aiding criminals," he conceded, but he claimed that most thieves don’t have the patience - or the time - to pick locks under stress. "And besides, lock pickers, he said, follow a code of honor.”
The primary risk that door locks used by retail chains are intended to thwart is entry using a working key, whether it be: lost, stolen and/ or duplicated.
Examples:
a) A key holder makes a copy while employed to minimize suspicion in order for themselves and/ or an accomplice to gain entry at a later date
b) A terminated key holder employee fails to return the key with similar bad intentions
Love to hate them!
Must be great working with taxpayer money, knowing that the $20 000 it's going to cost to swap out all your locks will just fall from the sky on demand...