Slashdot Mirror

← Back to Stories (view on slashdot.org)

PCs Pilfered, Paralyzing Populace

Posted by michael on from the doh! dept.

Heywood Yabuzof writes "According to this Wired story, thieves in Chile caused traffic to grind to a halt when they decided to steal the computers (15 PCs and 2 servers) that control the traffic lights in Santiago. Funny how everyone worries so much about preventing "evil hackers" from breaking in to systems remotely and causing chaos, and then some burglars just go ahead and steal the critical computers to produce the same (unintended?) results."

11 of 162 comments (clear)

  1. It's a good thing... by Sivar · · Score: 4, Funny

    It's a good thing they had the servers all in one place, else they may have inconvenience the thieves.

    --
    Computer Science is no more about computers than astronomy is about telescopes. --E. W. Dijkstra
    1. Re:It's a good thing... by BlueUnderwear · · Score: 5, Informative
      Makes you wonder why they needed computers to control the traffic lights - surely that could be done with some 555 timers

      Read the article. The traffic light were able to operate autonomously using builtin timers... What the computer did was ensure synchonization between one crossroads and the next. To make sure that when you get a green light, the lights are also green in the next few crossroads. Timers tend to drift, and hence an centralized system is necessary to keep things in sync.

      And presumably the computer system also changes the timings to adapt to the differences in traffic patterns throughout the day (giving longer green periods to those directions where the most traffic is at that time). Nowadays, most city road networks operate very close to their capacity, and even little details such as the exact timing of traffic light are important to keep matters fluid.

      --
      Say no to software patents.
  2. Physical Security by dirvish · · Score: 5, Informative

    Physical security is just as important as network security. If the admin of these servers and computers had safegaurded their physical security there wouldn't have been a problem. Hackers are just one threat...vandals must also be considered. That is why physical security is one of the 10 sections covered in the CISSP certification exam (the premeire information security certification).

    --
    FoundNews.com - get paid to blog.,
    1. Re:Physical Security by Shiny+Metal+S. · · Score: 4, Interesting

      Other very common mistake is leaving a floppy drive set up as the first booting device, or not having password protected BIOS settings.

      With e.g. Debian boot floppies or any other mini Linux and mini Unix distribution you can just insert a floppy, hit reset and wait a while until you got r00t and do whatever you want (like change the real root password in /etc/shadow on the main partition to whatever you want).

      I'm talking about it, because it's much easier than trying to write a remote exploit, much easier than writing a local exploit and much easier than actually stealing the whole hardware. It's usually also much easier than social engineering.

      It wouldn't be even hard to make a floppy which automatically do something to the system (like adding new users and adding them to every group, changing passwords, reading encrypted passwords for later cracking, leaving backdoors, etc.). When you have such a floppy, you only need few seconds to insert it, hit reset, come back after a minute when everything is done, take your floppy and hit reset again.

      You can even prepare this floppy in a way, that when everything is done, your files from the floppy are deleted and "shutdown -r" is run. That way even when someone enters the room before you, he'll only find a normally working system with empty floppy in the drive. The chances are that no one will even go there to see what's wrong if the server was down for a minute and now it's OK, especially if it's a lunch brake or something.

      Very dangerous and very easy if you can only go near a computer, and if it can boot the system from the floppy. And I've already seen servers without BIOS passwords and those set to boot in order of floppy,cd,hdd. It's very important and often forgotten issue, it's somewhere between physical and non-physical (logical?) security.

      --

      ~shiny
      WILL HACK FOR $$$

  3. This is a problem all over the world by jedrek · · Score: 5, Interesting

    Sitting behind our screens, we sometimes forget that the entire network is actually a physical entity. We remind ourselves of it when a backhoe rips through our ISP's OC3, or when we're out of cable and can't connect our network card to our router or modem.

    Well, at least I do.

    Anyway, here in Poland there's a problem with people stealing cable. Not cable-tv, but telecommunication cables. Whole neighborhoods here in Warsaw have been cut off from telephony because of stolen inter-exchange cable. Railroad lights have been known to fail because of stolen equipment (this happens way too often). It's twice as bad in Russia, trust me.

    Actually, at times, it seems like everything that isn't screwed or welded down in this country (this region) will get stolen. Ah... sucks pretty bad.

  4. Hahah by autopr0n · · Score: 5, Funny

    Not only did they steal the computers, they stole the alarm system that was supposed to protect them.

    The worlds most sarcastic criminals, is what we've got here :P

    --
    autopr0n is like, down and stuff.
  5. h4ck th3 pl4n37!!! by IntelliTubbie · · Score: 4, Funny

    Update: although the traffic jam caused a significant delay for police, the thieves were later arrested at Grand Central Station after hacking into a Gibson mainframe from a bank of public telephones. The perpetrators, identified as Angelina "Acid Burn" Jolie and Jonny Lee "Crash Override" Miller, were later released and have since gone on to make better movies. Sandra Bullock was unavailable for comment.

    Cheers,
    IT

    --

    Power corrupts. PowerPoint corrupts absolutely.

  6. Keep an eye out... by quintessent · · Score: 5, Funny

    ...for PCs on eBay that come pre-loaded with traffic controlling software.

    --
    Donate background CPU time to fight cancer.
  7. Tangential Tidbit by LionKimbro · · Score: 4, Interesting

    I have heard that the US phone companies store the telephone switching computers in carefully unmarked basements of various public buildings in the areas where they are performing switching.

    I have also heard that these are typically UNIX systems, and- get this- your phone number represents a series of cd ("cd", as in "change directory") operations into a file tree.

    So for example, if your phone number is 547-9510, then information about connecting to you is stored in directory ..../5/4/7/9/5/1/0/

    I don't know if any of this is true, but I have heard it from a person who has business knowing such things, and it sounds plausible to me. =^_^=

    Reply if you know better. Just a tangential tidbit.

  8. Re:You've gotta love... by gnovos · · Score: 5, Funny

    "Ned, where did all the servers go!?!?"

    "Don't worry, boss, they were all transfered over to the IBM e-server!"

    "Oooooh, excellent! Ah, where exactly IS the e-server?"

    "Oh, that got stolen."

    --
    "Your superior intellect is no match for our puny weapons!"
  9. Re:i hope for their sake by herko_cl · · Score: 4, Informative

    Living in Santiago, I can testify they luckily did. Using a backup server, they were able to restore traffic to normal within 6 hours.
    I'd like to clarify a few points, though. Our traffic lights are fully autonomous, but the stolen computers analyze traffic flow via cameras at critical junctions and synchronize the lights from one crossroads to the next.
    This works so well that, even when traffic is extremely heavy, cars keep moving along. On most mornings and evenings, if you are going "with the flow" you can drive for miles without getting a red light.

    On the subject of security: apart from stealing the alarm system (we thought that was funny, too), they removed heavy cast-iron bars from a window to enter this office. To do this, they had to break down part of the wall. This was obviously a well-planned, well executed heist.

    --
    No .sig for you! ONE YEAR!