27 min listen
Supply Chain Level 0: Grinding Tractors to a Halt - Sick Codes - ESW #281
Supply Chain Level 0: Grinding Tractors to a Halt - Sick Codes - ESW #281
ratings:
Length:
34 minutes
Released:
Jul 22, 2022
Format:
Podcast episode
Description
Sick Codes hacked all four John Deere Telematics Gateway's, and the John Deere Gen4 Series Display. Without those, it's "just a tractor." However, this is Critical Infrastructure. In fact, without Tractors, Combines & Implements: farmers cannot plant, spray or harvest. No raw materials == no food & alcohol. You will see how long I persisted over multiple months, to gain access and was able to hack these devices to the absolute binary core, warts & all. What was the bounty? Source Code, Root File Systems, FPGA compiled binaries, the works. Agricultural Security is a serious issue. Multiple ransomware attacks last year showed exactly how destructive attacks on Food & Agriculture are, and how fragile the supply chain is. Segment Resources: https://sick.codes https://github.com/sickcodes https://www.youtube.com/watch?v=zpouLO-GXLo https://hardwear.io/usa-2022/speakers/sick-codes.php Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw281
Released:
Jul 22, 2022
Format:
Podcast episode
Titles in the series (100)
Enterprise Security Weekly #9 - Sniffing Each Others' Farts: This week in the news no excuses to go Phish yourself, a services vendor helps you identify risk, the #1 privileged identity management solution (According to some), and a huge blow to the Endpoint Security Agent market. And we'll talk about how to... by Enterprise Security Weekly (Video)