Hackers Take over Giant Cranes at Construction Site
%2Favatars%2FVy5toVC0BNbz.jpg&w=96&q=75)
/2023/02/25/image/jpeg/jcCDNA6gIS7HajXpspba80jRw2RJJz5AGWHiyY11.jpg "The science behind the propellers moving the world’s largest ships")
/2023/02/19/image/jpeg/G4Kjw5BkCROdRTaxjw70IN0O0koHutnju4kOJsM1.jpg "The world's tiniest 3D printer is smaller than a match")
/2023/10/01/image/jpeg/XkSY9MHMeqXU4Ywz4ScJk4TSXB50rIlVp9jq922u.jpg "MIT makes a super thin solar cell that can turn any surface into a power plant")
/2023/09/30/image/jpeg/6IjK0KBN2CeWMA7df6Up3U6thpVJXxlG6O1Vqavl.jpg "What are these black balls doing in the reservoir?")
/2023/09/29/image/jpeg/voFjWPgxbHXwheGsIQF2L0gAW0jbujHVnN2I2wEN.jpg "GE Aerospace’s Sensiworm made flying safer!")
/2023/09/28/image/png/JxWeuRBc3TFCMjNiVXu2UIt90UamRuAnXtEPxWhT.png "Are plastic-eating worms the solution to plastic waste?")
/2023/09/27/image/jpeg/NkLowKFkYRa5HSpVpzAqp8LxzcqazLWg5FPsmprr.jpg "How this Chinese hypersonic fleet killer will counter U.S. Navy")
/2023/09/26/image/jpeg/zHjalQG1HPbbeDvmS7EoO2EavIo4eaQxvwe5LgUD.jpg "Why we put wind turbines underwater")
/2023/09/25/image/jpeg/QrGYVahotQMvit1WXPMwhWH2HcKqtALSZo6UJyXS.jpg "How Will M10 Booker make The U.S. Army Unstoppable")
/2023/09/24/image/jpeg/KzrjnGeg73nBp79gp6uG4mGSP6z49OiIU7hLlAlx.jpg "Should police have marijuana tests?")
Two white hat hackers have demonstrated how vulnerable cranes and other-other large scale building equipment is by taking control of cranes on building sites from their car.
Federico Maggi and Marco Balduzzi working for Japanese cybersecurity giant Trend Micro, traveled down the Lombardy region of Italy agreed with laptops, scripts for running their hacks and some radio hardware to beam out the exploit code.
They asked building site managers if they could attempt to hack cranes and other equipment on site. They were scarily successful.
They found that cranes are enormously vulnerable. The problem lies in the communications between the controllers and the cranes. To get into the system the two hackers reverse engineer the communications coming from the radio frequency (RF) controller.
The relative simplicity of the hack highlights the how damaging the potential catastrophe could be if the cranes were hacked maliciously. The damage could range “from theft and extortion to sabotage and injury,” the researchers wrote in a paper.
The researchers tested their scripts and hacking skills at 14 different construction sites using five different types of attacks.
The attacks included: a replay attack, command injection, e-stop abuse, malicious re-pairing, and malicious reprogramming. The first four types of attacks are able to be carried out in just a few minutes and at a very low cost.
The researchers were armed simply with two laptops, some free code and basic RF equipment costing between $100 and $500. To deal with the inconsistencies of the building sites technology they also developed their own bespoke hardware and software to streamline the attacks, called RFQuack.
While the point of the exercise for these two benevolent hackers was to sell security software, it also creates a call to action for the manufacturer of this type of equipment to take security more seriously and fix the flaws exposed by Maggi and Balduzzi.
SHOW COMMENT (1)
/2023/10/01/image/jpeg/zsBR1FMkOgxJK4Mt6I4umKQKP9bIzf7TgSt7wcpS.jpg "Automakers fear new fuel standards will derail EV shift")
/2023/10/01/image/jpeg/5xFKBfwPX6H4Y4tQRrrIvLzFagwrOqZyG8HRq90p.jpg "Harvest moon 2023: the last supermoon of the year")
/2023/09/11/image/jpeg/FyjoRiLdd9sOj0dytR3WjS3yDS1ON5OKg7bkfRUv.jpg "Life by 2100: nanotech, cybernetics, and commercial space travel")
/2023/10/01/image/jpeg/X2Ck4OpClBYbZscdUToI2uKBlSazNuMCce4Z7YmT.jpg "Indigenous GaN switch technology hints at new era for India")
/2023/10/01/image/jpeg/26e5wQxcH5sS1Qu3DmvnXWOuCXorA3A867pcKsLY.jpg "Scientists make eco friendly material inspired by worms")
/2023/08/30/image/jpeg/79rLCSNuXkygYT4n4NHbsaeEzi0PBuvPGTEd9Hl5.jpg "Are smart phones destroying our mental health?")
/2023/09/12/image/jpeg/7ZU03vLOnlFnHbET1pxVv2vlF9S2R5ZekupSiNl0.jpg "From lost wings to ruptured fuselages, 7 times planes refused to die")
/2023/10/01/image/jpeg/7xwjSC7psFAZXx1jnRI5iaRKdC7kXAaaGlZuTe0u.jpg "Bird flock inspired CubeSats look to observe water bodies")
/2023/09/24/image/jpeg/LbEWVi9Dqey9YK0OQQHLWcm6Fwci9Kgmhp4SL6OG.jpg "10 ancient civil engineering projects still in use")
/2023/08/17/image/jpeg/wkfQOEAHMgv7YekMUPWWlPJGY7Fn1Pa2blepLs4m.jpg "Too hot to fly? The effects of heatwaves on air travel")