Slashdot Mirror
US Gas Pump Hacked With 'Anonymous' Tagline
An anonymous reader writes Researchers at Trend Micro have uncovered a gas pump in the United States whose ID has been changed from 'DIESEL' to 'WE_ARE_LEGION' — the call-sign of the Anonymous hacking group. Following up recent revelations regarding the vulnerability of gas pump systems to online attackers, the researchers found 1,515 completely unprotected gas pump monitoring devices via the Shodan device-based search engine. The report notes that the exposed devices are capable of being protected via six-digit pins, but this security measure is not being used. The report concludes: "Our investigation shows that the tampering of an Internet-facing device resulted in a name change. But sooner or later, real world implications will occur, causing possible outages or even worse."
I don't know, I've found my Internet connected pacemaker to be pretty useful, gives me stats, automatically informs my doctor if there's a problem, it's nice. And there is good security with a password and full logging, as anyone browsing to http //172.16.54.138/admin.php?include=/usr/share/www/basic-authentication.php&log=/home/pacemaker/default.log&addlog=2015-02-12%2011:21:00%20Initiated%20login can clearly see.
Best part: the guy who wrote the software apparently used to work for what was, until a year or so ago, the biggest Bitcoin exchange in the world, so with a background in handling sensitive financial transactions he obviously knows a lot about security.
You are not alone. This is not normal. None of this is normal.
My shit might be stone age
Damn, what the hell have you been eating?
Paleo diet strikes again....