Archive for the ‘Hacking’ Category

Posted by //

Date //
Feb 9, 09 - 1:20 pm

Categories //

Comments Off on I Heart Hackers – Not Zombies

Apparently someone in Austin Texas hacked a freeway construction warning sign:

Just encase the video gets pulled from YouTube, here are some of the warning messages that hackers put on the signs:

  • Zombies in area – Run
  • The end is near!!
  • Caution, Zombies ahead

This is totally geektastic! I love it.

All I can think about is how perfect this hack would be to pull off around Halloween time, but then again, Zombies could attack at any time :)

Posted by //

Date //
Aug 21, 08 - 10:45 am

Categories //

Comments Off on FEMA Phones Get Hacked

FEMA Phones Get HackedIf you are going to hack a phone system, do you really want to hack the Department of Homeland Security?

That’s what happened this weekend when someone made hundreds of illegal calls from a FEMA PBX to the Middle East and Asia.

It appears that it was the usual culprits of poor change control and misconfigurations left FEMA’s digital doors open.

All of this is according to an Associated Press story I read on last night.

According to the AP’s Eileen Sullivan and Ted Bridis, the attacker placed more than 400 calls on the hacked FEMA phone system to places such as Afghanistan, Saudi Arabia, India and Yemen.

Here’s the kicker, from an IT security perspective, from the AP story quoting a FEMA spokesperson:

FEMA’s chief information officer is investigating who hacked into the system and where exactly the calls were placed to. At this point it appears a “hole” was left open by the contractor when the voicemail system was being upgraded, Olshanski said. Olshanski did not know who the contractor was or what hole specifically was left open, but he assured the hole has since been closed.

This illustrates an excellent, yet often overlooked, point. Despite all of the attention we spend focusing on zero-day vulnerabilities and exotic exploits and attacks – many times it’s simply poor change control procedures, lack of urgency to patch, or carelessness that gets an organization bitten.

Fortunately, in this case, it only appears to have been $12,000 in illegal calls to the Middle East and Asia, and some egg of the face of FEMA and the DHS.

Source: MSNBC: Hacker breaks into FEMA phone system