• Welcome to New Hampshire Underground.
 

News:

Please log in on the special "login" page, not on any of these normal pages. Thank you, The Procrastinating Management

"Let them march all they want, as long as they pay their taxes."  --Alexander Haig

Main Menu

Hackers open prison doors?

Started by Kat Kanning, November 04, 2011, 02:31 PM NHFT

Previous topic - Next topic

Kat Kanning

Wouldn't this be just terrible?  All those pot smokers loose on the streets....

http://www.washingtontimes.com/news/2011/nov/4/feds-concerned-about-hackers-opening-prison-doors/

MIAMI — Federal authorities are concerned about new research showing U.S. prisons are vulnerable to computer hackers, who could remotely open cell doors to aid jailbreaks.

The Federal Bureau of Prisons is "aware of this research and taking it very seriously," spokesman Chris Burke told The Washington Times.

Mr. Burke was reacting to research by private experts who found that the security systems in most American prisons are run by computer software vulnerable to hackers.

"You could open every cell door, and the system would be telling the control room they are all closed," said John J. Strauchs, a former CIA operations officer who helped develop a cyber-attack on a simulated prison computer system and described it at a hackers' convention in Miami last week.

The security systems in most American prisons are run by special computer equipment called industrial control systems, or ICS. They are also used to control power plants, water treatment facilities and other critical national infrastructure. ICS has increasingly been targeted by hackers because an attack on one such system successfully sabotaged Iran's nuclear program in 2009.
**FILE** Inmates pass the time in cramped conditions at California State Prison in Los Angeles. (California Department of Corrections via Associated Press)**FILE** Inmates pass the time in cramped conditions at California State Prison in Los Angeles. (California Department of Corrections via Associated Press)

A malicious cyber-intruder could "destroy the doors," by overloading the electrical system that controls them, locking them permanently open, said Mr. Strauchs, now a consultant who has designed security systems for dozens of state and federal prisons..

Hackers could "shut down secure communications" through the prison intercom system and crash the facility's closed-circuit television system, blanking out all the monitors, he added.

Mr. Strauchs, 67, and his daughter — attorney, professor and computer security researcher Tiffany Strauchs Rad , 37 — told an audience at the Hacker Halted conference about the attack they developed in the basement of a Washington area home for less than $2,500.

"Personally, I think the greatest danger is assassination," Mr. Strauchs told The Washington Times afterward. "You create chaos as a way to [implement a plan to] kill someone."

Mr. Strauchs said he and his daughter had been careful to work with U.S. authorities to alert them to the risk before publicly disclosing their attack. They organized a briefing for federal agencies over the summer at CIA headquarters in Northern Virginia.

Sean P. McGurk, who led the Department of Homeland Security's efforts to secure ICS until leaving in September, said the department had looked into the researchers' claims using the special ICS computer test bed at the Idaho National Laboratory.

"We validated the researchers' initial assertion ... that they could remotely reprogram and manipulate" the special software controllers that run the systems, Mr. McGurk said.

Teague Newman, another member of their team, said ICS systems are not supposed to be connected to the Internet.

"But in our experience, there were often connections" to other networks or devices, which were in turn connected to the Internet, making them potentially accessible to hackers, he said.

In some of the facilities the team visited for their research, guards had used the same computer that controls the prison's security systems to check their personal email, exposing it directly to potential hackers, Mr. Teague said.

Story Continues ?

Lloyd Danforth

Unplug all of the lines to the outside!

KBCraig

Long ago at USP Marion (where Ed Brown is), all the cameras went dark and all the grills and gates opened. Nothing was connected to the internet (which didn't even exist outside some labs at that time), it was just one very smart inmate electrician.

There might be some new prisons with systems like those described in the article, but they're nowhere near the majority. Most are just old fashioned electromechanical interlocks.

Kat Kanning

Another scare to rationalize putting controls on the internet.

Russell Kanning

maybe the cia guys can let all of us domestic insurgents loose

littlehawk

Quote from: KBCraig on November 04, 2011, 07:10 PM NHFT
Long ago at USP Marion (where Ed Brown is), all the cameras went dark and all the grills and gates opened. Nothing was connected to the internet (which didn't even exist outside some labs at that time), it was just one very smart inmate electrician.

There might be some new prisons with systems like those described in the article, but they're nowhere near the majority. Most are just old fashioned electromechanical interlocks.

That would make for one kickass movie. Ed Brown plays Spartacus.   :D