There Are at Least Three Easy Ways to Hack the Emergency Alert System

Rebecca Greenfield

July 9, 2013 at 1:53 PM

There Are at Least Three Easy Ways to Hack the Emergency Alert System

The small-scale hacking of the Emergency Alert System in Montana to broadcast a supposed zombie apocalypse earlier this year, revealed the possible safety hazards of a vulnerable alert system, making this new report on various ways to hack the system all the more alarming. According to an IOActive Security Advisory published, two of the systems responsible for delivering the messages, can be easily hacked. "An attacker who gains control of one or more DASDEC systems can disrupt these stations' ability to transmit and could disseminate false emergency information over a large geographic area," explains the report. DASDEC I and DADSEC II are both, apparently, at risk. But it doesn't just stop there: In addition, the report also links to another notice about further vulnerabilities in the system known as R189 One-Net/R189SE One-NetSE bringing the hole count up to three, which is disconcerting.

Technically, compromising the DASDEC systems doesn't sound too difficult. "These DASDEC application servers are currently shipped with their root-privileged SSH key as part of the firmware update package," Mike Davis, the principal research scientist who discovered the holes, told Wired's Kim Zetter. "This key allows an attacker to remotely log on in over the Internet and can manipulate any system function." In other words: If you have the secret password sent out with the firmware you can hack it— basically.

The other vulnerability mentioned in the second report makes it even easier to hack than the DASDEC ones. The main problem with that system was that it includes a default administrative password that people often forgot to change. Indeed, that's how the zombie apocalypse pranksters got access: They just entered a password. (Let this be another one of the many lessons in passwords best practices to you all.) A silly fake attack of the living dead is the most benign outcome of these hacks, of course. Sure, not everyone gets their intel from screechy banner messages during Maury, but imagine the panic if some sort of faux terror alert went out across the country.

It's not all terrible news, though. The news of weaknesses went out in tandem with a series of fixes for the systems. "A spokesman for IOActive said that his group released the announcement today only after working with CERT to notify the vendors first and give them time to notify customers and work on fixes," notes Zetter. Some fixes had already been made; others, however, are still in progress. So, think twice if you see any alien invasions over the Emergency Alert System in the near future.

Yahoo Finance
The FDIC change that leaves wealthy bank depositors with less protection
Affluent Americans may want to double-check how much of their bank deposits are protected by government-backed insurance. The rules governing trust accounts just changed.
Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it
The quality was choppy, but it was better than what the WNBA had.
Yahoo Sports
NFL Draft grades for all 32 teams | Zero Blitz
Jason Fitz and Frank Schwab join forces to recap the draft in the best way they know how: letter grades! Fitz and Frank discuss all 32 teams division by division as they give a snapshot of how fans should be feeling heading into the 2024 season. The duo have key debates on the Dallas Cowboys, New York Giants, New Orleans Saints, Los Angeles Rams, New England Patriots, Las Vegas Raiders and more.
Yahoo Sports
2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick
Yahoo Sports' Charles McDonald breaks down the Broncos' 2024 draft.
Yahoo Sports
NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?
Which teams did the best in the NFL Draft?
Yahoo Sports
Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race
Race organizers say they'll revoke a Trump fundraiser's suite license if he holds an event for the former president on Sunday at the race.
Yahoo Sports
New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal
It turns out the money was going from Ohtani's bank account to an illegal bookie to ... casinos.
Yahoo Sports
Bulls' Lonzo Ball picks up $21.4 million option for 2024-25 season amid knee concerns
Ball hasn't played since the 2021-22 season.
Yahoo Sports
Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset
The 150th Kentucky Derby produced yet another magnificent two-minute spectacle.
Yahoo Sports
Anthony Edwards' arrival should have the Nuggets — and the entire league — on high alert
The Timberwolves' rising superstar led Minnesota to a Game 1 victory over Denver, then reminded the world that he's 22, not 23 ... yet.
Yahoo Sports
Formula 1: Lando Norris gets his first win ahead of Max Verstappen at the Miami Grand Prix
Norris hadn't pitted and was leading the Grand Prix when a safety car was deployed for Logan Sargeant and Kevin Magnussen's crash.
Yahoo Finance
CVS stock plunges after earnings numbers one analyst 'did not even believe'
CVS warns it could cede Medicare Advantage market share as reimbursement rates pressure the company.
Yahoo Sports
The best QBs for 2024 fantasy football according to our analysts
The Yahoo Fantasy football analysts reveal their first quarterback rankings for the 2024 NFL season.
Autoblog
Why did Musk ax the Supercharger team?
Elon Musk’s decision to dismiss much of Tesla’s Supercharger team this week came as a shock. A look at possible reasons why he did it.
Yahoo Sports
Canelo Álvarez and Oscar De La Hoya erupt in heated exchange ahead of title bout with Jaime Munguía
Canelo Álvarez is set to defend his title against undefeated Jaime Munguía on Saturday in Las Vegas.
Yahoo Sports
Diana Taurasi’s trash-talking, in-your-face ways may be a bit of a shock to new WNBA fans
Caitlin Clark fans beware: You never know what the 20-year veteran might say … or do.
Yahoo Sports
Shohei Ohtani punctuates Dodgers sweep of Braves with 2 home runs to tie MLB lead
Ohtani tagged Braves ace Max Fried for a two-run shot in the first inning then hit a solo shot in the eighth as the Dodgers prevailed in a battle of NL favorites.
Yahoo Sports
Caitlin Clark catches fire from 3 in WNBA preseason debut; Arike Ogunbowale's late heroics send Wings past Fever
Caitlin Clark’s WNBA preseason debut went much like her senior year at Iowa. She hit a bunch of 3s and did so in front of a sold-out crowd.
Yahoo Sports
Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46
The Seminoles lost 23-16 to Tennessee in the first-ever BCS title game.

News

Life

Entertainment

Finance

Sports

New on Yahoo

There Are at Least Three Easy Ways to Hack the Emergency Alert System

Recommended Stories

The FDIC change that leaves wealthy bank depositors with less protection

Former NBA guard Darius Morris dies at 33

No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it

NFL Draft grades for all 32 teams | Zero Blitz

2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick

NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?

Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race

New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal

Bulls' Lonzo Ball picks up $21.4 million option for 2024-25 season amid knee concerns

Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset

Anthony Edwards' arrival should have the Nuggets — and the entire league — on high alert

Formula 1: Lando Norris gets his first win ahead of Max Verstappen at the Miami Grand Prix

CVS stock plunges after earnings numbers one analyst 'did not even believe'

The best QBs for 2024 fantasy football according to our analysts

Why did Musk ax the Supercharger team?

Canelo Álvarez and Oscar De La Hoya erupt in heated exchange ahead of title bout with Jaime Munguía

Diana Taurasi’s trash-talking, in-your-face ways may be a bit of a shock to new WNBA fans

Shohei Ohtani punctuates Dodgers sweep of Braves with 2 home runs to tie MLB lead

Caitlin Clark catches fire from 3 in WNBA preseason debut; Arike Ogunbowale's late heroics send Wings past Fever

Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46