Where Will Hackers Strike Next: Transportation?
Practically every industry these days needs to be prepared for some kind of cyber threat, but the nature of the attacks and how the hackers carry out their assaults is ever-changing. Two news stories that popped onto my radar this week point to the different kinds of potential hacks that might occur, and both have to do with the transportation industry.
The first, as reported by Reuters, shows the vulnerabilities of railways, which increasingly use wireless technologies (GSM-R, which is more secure than the GSM used for phones) to control train switching systems. The potential threat, identified by professor Stefan Katzenbeisser of Technische Universität Darmstadt in Germany, speaking at a hacking conference in Berlin is a denial-of-service (DoS) attack. By overwhelming the systems, trains would literally have to halt in their tracks. A DoS hack of this kind couldn't cause trains to crash, added Katzenbeisser, "but service could be disrupted for quite some time." The major reason the vulnerability exists is because the software encryption keys used to secure the communication between trains and switching systems, are stored and distributed on physical media, which could be stolen.
