Radio Signal Interference Halted Train Stations in Poland
Met police probe data breach, Crypto fintech company Prime Trust locked out of $39 million wallet, Kroll hack exposes crypto customer data, French gov't agency exposed data on 10 mil., much much more
Metacurity is back from our one-week hiatus. Please scroll to the end to see our recap of the top infosec developments that occurred earlier in the week.
Over the weekend, more than twenty of Poland's trains carrying both freight and passengers were brought to a halt across the country through what press reports describe as a cyberattack, which appears to have been carried out on behalf of Russia.
But. according to Lukasz Olejnik, a Polish-speaking independent cybersecurity researcher and consultant, the saboteurs appear to have sent simple so-called “radio-stop” commands via radio frequency to the trains they targeted. Because the trains use a radio system that lacks encryption or authentication for those commands, Olejnik says, anyone with as little as $30 of off-the-shelf radio equipment can broadcast the command to a Polish train, sending a series of three acoustic tones at a 150.100 megahertz frequency, and trigger their emergency stop function.
…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.