Smart meter hack framework goes open-source
SecureState posts ‘Metasploit-like’ code
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
Security outfit SecureState’s smart meter hacking framework, Termineter, has gone live over at Google Code.
The software is described as having a structure like Metasploit, with a similar interface and ability to be extended with external modules.
Termineter isn’t up to the full doomsday-scenario “remote attack” that troubles owners of critical infrastructure who stupidly opened up their control interfaces to the Internet (so as to save themselves the cost of private networks): it gathers smart meter data over the devices’ local serial optical interfaces.
SecureState announced its intention to release the software at the end of June. At the time, SecureState said the software allowed users to test for vulnerabilities such as energy consumption fraud and network hijacking.
In addition, Termineter can read from and write to tables in the smart meter, as well as parsing security, modem and log tables. To allow it to be open-sourced, the software focuses on the ANSI C12.18 and C12.19 standards used in smart meters. Users would need to write or acquire separate modules to access vendor-specific information.
As SecurityWeek notes, the tool is to be demonstrated in public at Las Vegas at the Security B-Sides conference on Wednesday July 25. ®
COMMENTS
I'm building a small nuclear power plant in my kitchen, that should make the meter spin backwards fairly quickly. Lewis told me they're safe. but does the red wire connect to the the brown thingy?
Hackzd
All your Electricity/Water/Gas are belong to us.
We will now Quadruple your fuel bills and switch off your water.
And that's just from the Utility Company.
Gawd knows what the Hactivists will do with this.
I'd be careful with that. Heard a very funny story here about people putting PV panels on their houses to save their elec costs. Some of them have completely over-done it and often end up supplying energy to the grid. The funny part is that the meters do not meter the direction of power flow, just the quantity of power running through it. The outcome was that their bills went up, and they were supplying the grid!
One of the power engineers here said that it was because the designers assumed that negative power delivery meant that the meter had been fitted backwards so the meter just counts it as forwards power.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
