securitybreach Posted April 25, 2012 Share Posted April 25, 2012 In the world of computer systems used to flip switches, open valves, and control other equipment inside giant electrical substations and railroad communications systems, you'd think the networking gear would be locked down tightly to prevent tampering by vandals. But for customers of Ontario, Canada-based RuggedCom, there's a good chance those Internet-connected devices have backdoors that make unauthorized access a point-and-click exercise. That's because equipment running RuggedCom's Rugged Operating System has an undocumented account that can't be modified and a password that's trivial to crack. What's more, researchers say, for years the company hasn't bothered to warn the power utilities, military facilities, and municipal traffic departments using the industrial-strength gear that the account can give attackers the means to sabotage operations that affect the safety of huge populations of people..... http://arstechnica.com/business/news/2012/04/backdoor-in-mission-critical-hardware-threatens-power-traffic-control-systems.ars Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted April 25, 2012 Share Posted April 25, 2012 Like a key under a door matt, the MAC address exposed here allows hackers to tamper with this Internet-connected RuggedCom device, used to control power substations and other criticial infrastructure. That's pretty scary stuff when you think about it. That could be your electrical infrastructure, water infrastructure, natural gas. And they have been pushing for us all to be on this so called smart grid ... wonder where that will lead with these types of major lack of security at the head end for these types of power, traffic-control, etc. Sigh... Quote Link to comment Share on other sites More sharing options...
securitybreach Posted April 25, 2012 Author Share Posted April 25, 2012 Yes, scary stuff indeed!! Quote Link to comment Share on other sites More sharing options...
ross549 Posted April 25, 2012 Share Posted April 25, 2012 Sadly, many governments are not going to want to pay to develop and deploy dedicated network infrastructure to keep this stuf off the public Internet. Those same politicians need to be punched in the face, then fired and held financially responsible for the damages of such a system being hacked. Adam Quote Link to comment Share on other sites More sharing options...
securitybreach Posted April 25, 2012 Author Share Posted April 25, 2012 Those same politicians need to be punched in the face, then fired and held financially responsible for the damages of such a system being hacked. Adam Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted April 25, 2012 Share Posted April 25, 2012 Sadly, many governments are not going to want to pay to develop and deploy dedicated network infrastructure to keep this stuf off the public Internet. Those same politicians need to be punched in the face, then fired and held financially responsible for the damages of such a system being hacked. Adam Daggone right Adam! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.