The discovery of a critical vulnerability in traffic light controllers by cybersecurity researcher Andrew Lemon from Red Threat revealed a flaw in the Intelight X-1 device that allows unauthorized control without any authentication. This could potentially result in hackers being able to manipulate traffic flow.
Although Lemon could not recreate the movie-like scenario of synchronizing all traffic lights, he did possess the skill to control traffic flow by adjusting light timings. Nonetheless, this could result in substantial vehicular congestion and pose potential safety risks.
Lemon encountered legal threats from Q-Free, the device manufacturer, when reporting on more than 30 exposed devices. Despite this, Lemon’s findings highlighted potential vulnerabilities in widely used NTCIP protocols, which are also employed by other manufacturers such as Econolite. Although Q-Free refuted reports stating that their outdated devices were susceptible to exploitation, it was clear that some security weaknesses existed due to Lemon’s discovery.
As interconnected systems become more prevalent in cities, experts caution that these weaknesses emphasize the pressing necessity to improve security measures within vital infrastructure. Safeguarding against cyberattacks is crucial for sustaining public safety and avoiding disorder.
Disclaimer
NextNews strives for accurate tech news, but use it with caution - content changes often, external links may be iffy, and technical glitches happen. See full disclaimer for details.