Security experts have discovered vulnerabilities in devices ATG, watching the level of fuel at gas stations the United States. Theoretically, hackers can gain control of the device to turn off the fuel supply or cause false signals, including leak: in this case, automatically turns off all pumps that paralyzes the station. According to the study, with the help of Internet attacks can gain control of such sensors to 5300 at a gas station in the United States. Communication protocols for equipment obsolete, and the owners of the stations are conventional routers and do not think about security.
image
Automated devices show the amount of fuel at the gas station to report when it's time to order gasoline. Attackers using Internet attacks can control the settings, making false reports or completely shutting off the supply of gasoline - saying that the tank is empty. If the device says that the tank is full, gas stations may simply be left without fuel - because no one will be ordered. In the worst case, an attacker can inform about the leak, which disables all pumps and paralyze the work station.
As the researchers note, at petrol stations are often used conventional routers bought from Best Buy, so that after you connect to the network stations owners face the same problems as ordinary consumer. The problem is that these devices monitor the level of fuel in the tanks. Most of the stations are not owned by large corporations and private owners, which are of little interest to the security of the network connection.
The most common sensors manufactured by Veeder-Root. These sensors can be protected with a password of six characters, which is unencrypted and can be intercepted, but mostly no password is used.
Among the main problems the researchers note obsolete communication protocols designed for the equipment for about twenty years ago.
image
Automated devices show the amount of fuel at the gas station to report when it's time to order gasoline. Attackers using Internet attacks can control the settings, making false reports or completely shutting off the supply of gasoline - saying that the tank is empty. If the device says that the tank is full, gas stations may simply be left without fuel - because no one will be ordered. In the worst case, an attacker can inform about the leak, which disables all pumps and paralyze the work station.
As the researchers note, at petrol stations are often used conventional routers bought from Best Buy, so that after you connect to the network stations owners face the same problems as ordinary consumer. The problem is that these devices monitor the level of fuel in the tanks. Most of the stations are not owned by large corporations and private owners, which are of little interest to the security of the network connection.
The most common sensors manufactured by Veeder-Root. These sensors can be protected with a password of six characters, which is unencrypted and can be intercepted, but mostly no password is used.
Among the main problems the researchers note obsolete communication protocols designed for the equipment for about twenty years ago.
No comments:
Post a Comment