English
English
Español
Français

Sign Up for Our E-News!

Join over 18,000 other roofers who get the Week in Roofing for a recap of this week's best industry posts!

Sign Up
Duro-Last New Membrane Colors Sidebar ad
GCMC-Podcast-WinTraining-Sidebar-2
IKO - Sidebar - Summit Grey
ServiceFirstSolutions-Grow-Sidebar
USG - Sidebar - Wind
Malco Tools - Sidebar Ad - Metal Benders
English
English
Español
Français

Hackers Take Over Construction Cranes

RCS- Construction
January 21, 2019 at 7:28 p.m.

By Karen L. Edwards, RCS Editor.

Implementing technology on worksites has many advantages but its important to be aware of the risks and take steps to prevent malicious attacks.

Forbes reported this week that research hackers successfully took over a large construction crane using just a laptop, some code and some radio hardware. The hackers, Federico Maggi and Marco Balduzzi, saw their first successful takeover happen in Italy where they convinced a construction site manager to let them try to take over the crane.

The manager turned off the transmitter used for controlling the crane and put it into a stop state. The hackers went to work and seconds later they were operating the crane. Working on behalf of Japanese cybersecurity firm Trend Micro, the hackers made it into 14 locations where they successfully hacked into devices that controlled the cranes and also other equipment such as excavators, scrapers and other large machinery.

It became clear that the companies manufacturing the tools are going to need to take steps to secure the equipment from attacks. The hackers pinpointed a vulnerability in the communication between the equipment and the controllers. The data packers traveling through the airwaves had very little or even no security at all. In fact, the two stated in their paper about their findings that remote-controlled toy cars or remote door locks contained more security than the equipment controllers.  They even found that they could check traffic over various radio frequencies and detect what devices were currently in use and whether or not they were vulnerable to attack.

According to Forbes, there were seven manufacturers whose devices were vulnerable to the attackers: Saga, CircuitDesig, Juuko, Autec, Hetronic, Elca and Telecrane. This research presents a potentially very dangerous situation to construction sites and workers using automated equipment or remotely controlled devices.

It’s good to note that fixes have been rolling out over the last year thanks to Trend Micro’s work with the U.S. government-funded Computer Emergency Response Teams that are alerting manufacturers to the risks so they will patch the vulnerabilities.

Stay up-to-date on the latest industry news when you sign up for the RCS Week-in-Review email and learn more about technology in the roofing industry by visiting the Roofing Technology Think Tank’s website.



Recommended For You


Comments

There are currently no comments here.

Leave a Reply

Commenting is only accessible to RCS users.

Have an account? Login to leave a comment!


Sign In
Tremco - Banner Ad - Unveiling Success (Krista Gnatt Podcast)
English
English
Español
Français

Sign Up for Our E-News!

Join over 18,000 other roofers who get the Week in Roofing for a recap of this week's best industry posts!

Sign Up
Western Colloid - Sidebar Ad - FAAR Best Practices
Hi Peak SIdebar Ad
People Make Roofing - Kyle & Campbell Thomas - Nov
Rapid RevOps - Get A Grip - Sidebar Ad Q4
Duro-Last New Membrane Colors Sidebar ad
Readyslate Sidebar Ad