Hacker News new | ask | show | jobs
by bayindirh 1109 days ago
We don't know whether the meter accepts every command, or the device has a fixed security protocol reverse engineered and known by researchers.

These protocols exist to get current readings from meters for data retrieval ease, and generally have a combination of security through obscurity and simple authentication to enable mass readings (by authorized people) easier. IIRC, these things can talk P2P in densely populated areas, and you can get all meters' readings in mere minutes, tops.

In any way, after and initial PoC, the rest of the video gets into territory of equipment abuse, and I got angry and sad while watching it. You can do it, OK, then why damage things which are not yours? Document your findings and leave.
2 comments
ziml77 1109 days ago
That also made me angry to watch. He knew what he was doing and got the result he was hoping for. I hope his electric company is aware of what happened. The serial number and electric company name are both clearly visible in the video.
link
pixl97 1109 days ago
>can do it, OK, then why damage things which are not yours?

Because your a terrorist or an AI looking to destroy mankind?

You're drifting off into is/ought territory in why people do things and that is something that is very difficult to predict and control.

link
lloeki 1109 days ago
In my area of jurisdiction certain public places like bars and restaurants are required to have an externally accessible way for fire teams to cut power in the event of e.g a flood or a fire that would require soaking the place.

These are usually placed above the main door, and are made of a lever ending in a loop in which you hook a spear and pull down.

Neighbours unhappy with such places making noise would regularly pull them, cutting power, destroying wares that are in fridges, and whatnot.

The typical (and only, really) defense is to make the lever inoperable so you can frequently see them destroyed.

Having open remote RF access in these cases would be a disaster (until tinfoil is used as a defense)

link
bayindirh 1109 days ago
> Because your a terrorist or an AI looking to destroy mankind?

I didn't know we reached Ghost in the Shell level cybernetics, sorry. TIL.

> You're drifting off into is/ought territory in why people do things and that is something that is very difficult to predict and control.

No, I'm just asking a question. What he has done has no place in my ethics and morals. I don't tell anyone what to do, either. It's his life, he should deal with the consequences.

link
pixl97 1109 days ago
>he should deal with the consequences.

I don't disagree, this is why we typically have laws against destruction of property.

Conversely we have an increasingly globally connected world that is wholly dependant on software to keep functioning day to day. If someone figures out how to modulate your wireless router (I mean, long shot, yea) to smoke your neighbors power connection the 'ethics and morals' of said remote attackers is nearly meaningless. Especially in the case they live in a foreign country. Said attackers will be able to harass you with impunity while your power company is walking around with its thumb in its ass trying to figure out what's going wrong.

link