Roofers Coffee Shop - Where The Industry Meets!
Coffee Conversations LIVE!
English
English
Español
Français

Hackers Take Over Construction Cranes

RCS- Construction
January 21, 2019 at 7:28 p.m.

By Karen L. Edwards, RCS Editor.

Implementing technology on worksites has many advantages but its important to be aware of the risks and take steps to prevent malicious attacks.

Forbes reported this week that research hackers successfully took over a large construction crane using just a laptop, some code and some radio hardware. The hackers, Federico Maggi and Marco Balduzzi, saw their first successful takeover happen in Italy where they convinced a construction site manager to let them try to take over the crane.

The manager turned off the transmitter used for controlling the crane and put it into a stop state. The hackers went to work and seconds later they were operating the crane. Working on behalf of Japanese cybersecurity firm Trend Micro, the hackers made it into 14 locations where they successfully hacked into devices that controlled the cranes and also other equipment such as excavators, scrapers and other large machinery.

It became clear that the companies manufacturing the tools are going to need to take steps to secure the equipment from attacks. The hackers pinpointed a vulnerability in the communication between the equipment and the controllers. The data packers traveling through the airwaves had very little or even no security at all. In fact, the two stated in their paper about their findings that remote-controlled toy cars or remote door locks contained more security than the equipment controllers.  They even found that they could check traffic over various radio frequencies and detect what devices were currently in use and whether or not they were vulnerable to attack.

According to Forbes, there were seven manufacturers whose devices were vulnerable to the attackers: Saga, CircuitDesig, Juuko, Autec, Hetronic, Elca and Telecrane. This research presents a potentially very dangerous situation to construction sites and workers using automated equipment or remotely controlled devices.

It’s good to note that fixes have been rolling out over the last year thanks to Trend Micro’s work with the U.S. government-funded Computer Emergency Response Teams that are alerting manufacturers to the risks so they will patch the vulnerabilities.

Stay up-to-date on the latest industry news when you sign up for the RCS Week-in-Review email and learn more about technology in the roofing industry by visiting the Roofing Technology Think Tank’s website.



Comments

There are currently no comments here.

Leave a Reply

Commenting is only accessible to RCS users.

Have an account? Login to leave a comment!


Sign In
IRE22_750x100_FreeExpo_Bannner
English
English
Español
Français

Sign Up for Our E-News!

Join over 18,000 other roofers who get the Week in Roofing for a recap of this week's best industry posts!

Sign Up
NRCA Roofing day 2022 Sidebar
Estimating Edge - Sidebar Ad - Danny Boyle
Western Colloid - Sidebar Ad - 3 Things Your Manufacturers Should be Doing For You eBook
Owens Corning - Sidebar Ad - Why Widgets?
DaVinci - Sidebar Ad - RLW: How to Incorporate DaVinci in Your Business (On Demand)
IRE22_250x265_FreeExpo_Sidebar

English
English
Español
Français

Sign Up for Our E-News!

Join over 18,000 other roofers who get the Week in Roofing for a recap of this week's best industry posts!

Sign Up
FlashCo - Sidebar ad - Edge
Leap - Sidebar Ad - Empowering Contractors
ICP - Sidebar Ad - APOC Professional Protection
Wil-Mar - Sidebar Ad - I Got My Wil-Mar Pipe Collar!
NRCA Roofing day 2022 Sidebar
IKO - Sidebar Ad - ARMOURZONE