Researcher Hijacks Emergency Sirens With $30 Radio, Laptop
A security researcher has constitute a way to control the emergency alert system sirens in San Francisco with only a $xxx handheld radio and a laptop.
On Tuesday, Balint Seeber from It security provider Bastille Networks demonstrated the theoretical hack in a YouTube clip, and warned that other emergency alert systems are susceptible, too.
"A malicious role player could do the same thing and trigger false alarms," he warned in a separate video.
The hack applies to siren models from ATI Systems, which are controlled over a radio frequency. The trouble is the lack of encryption; the data packets sent over the radio frequency to the sirens are completely exposed.
Seeber, who lives in San Francisco, noticed he could analyze the radio transmissions each calendar week and written report how the data packets triggered the sirens to sound. In his demo, Seeber directed a siren to play an audio prune of his voice, along with the Rick Astley song "Never Gonna Give You Upward."
Seeber's test was agreeable, only the trouble is, any bad actor with some technical knowledge could feasibly exploit the vulnerability too.
Bastille Networks notified ATI systems and the city of San Francisco near the vulnerability in January. On Tuesday, ATI Systems said that Seeber's hack is likely legit, only also difficult to pull off.
"We wish to point out these are technically sophisticated people who accept devoted significant fourth dimension and try to this task," the company said in a argument. "Earlier customers panic as well much, please sympathize that this is non a trivially easy matter that just anyone tin practise."
Still, ATI Systems—which develops emergency alert systems for universities, refineries, and armed services bases—developed a patch that the visitor can work with clients to install.
The city of San Francisco is fixing its ain emergency alert arrangement by installing a firmware upgrade that adds encryption to data sent to and from the emergency sirens. "Initial testing shows the firmware upgrade minimized the threat. Yet, we will continue testing," said Linda Gerull, the urban center's executive director of the department of engineering, in a argument.
A year ago, a siren hijacking incident grabbed headlines when a hacker exploited the emergency warning organization in Dallas, Texas. The hacker did then by tampering with an older radio control system to hijack all 156 sirens in the city to bellow over a dozen times.
Source: https://sea.pcmag.com/news/20551/researcher-hijacks-emergency-sirens-with-30-radio-laptop
Posted by: jonesfroweed.blogspot.com
0 Response to "Researcher Hijacks Emergency Sirens With $30 Radio, Laptop"
Post a Comment