Follow up to https://kbin.social/m/technology@lemmy.ml/t/700738
cross-posted from: https://derp.foo/post/544012
There is a discussion on Hacker News, but feel free to comment here as well.
Was there and that was the best talk of the day
Was it really at 23:00 as scheduled?
Yes. It is on the 37C3, a big hacking conference in Germany, that is still ongoing. Some talks even start at 1am
Wow, so many good parts in this…
Side note: I do not do any coding professionally, just self taught stuff to impressive my business coworkers - but this was really well explained.
My favorites: Default username and password for accessing the debugger on the trains computer (that apparently can’t be changed)
Hard coded geofenced coordinates that would disable a train if it was being serviced at a competitors location
Absolute favorite: the incorrectly programmed date lock that would only disable the train November & December on the 21st-30th
Hopefully the company is reprimanded for this - here in the US it would probably be a slap on the wrist and nothing else.
This would be quite a bit more than a slap on the wrist in the US, the City of New York does all its own maintenance on all its buses, railroad and subway trains.
Manufacturer interference would result in some of the most aggressive city lawyers grinding the manufacturer’s headquarters into dust, legislatively.
I can’t believe it’d be different at any other jurisdiction within the US.
I’m pretty sure, it would be exactly like this. Don’t forget that the US is perfectly fine with having John Deere locking down their machines.
They will simply claim, that these features are some copyright or safety issue, pay a fine via an out of court deal and be done with it.
