507
submitted 1 year ago by btp@kbin.social to c/technology@lemmy.ml

In one of the coolest and more outrageous repair stories in quite some time, three white-hat hackers helped a regional rail company in southwest Poland unbrick a train that had been artificially rendered inoperable by the train’s manufacturer after an independent maintenance company worked on it. The train’s manufacturer is now threatening to sue the hackers who were hired by the independent repair company to fix it.

After breaking trains simply because an independent repair shop had worked on them, NEWAG is now demanding that trains fixed by hackers be removed from service.

all 42 comments
sorted by: hot top controversial new old
[-] Blizzard@lemmy.zip 129 points 1 year ago

"You wouldn't pirate a train"

[-] milicent_bystandr@lemm.ee 5 points 1 year ago

Is this a robbery?

No! It's a science experiment... computer science!

[-] ours@lemmy.world 6 points 1 year ago

The robbery is what the train manufacturer did.

[-] WolfhoundRO@lemmy.world 2 points 1 year ago

Then the hackers did a train robbery on the train robbery

[-] Blizzard@lemmy.zip 2 points 1 year ago

Their leader, 'Dutch', had a good plan.

[-] WolfhoundRO@lemmy.world 2 points 1 year ago

He also screamed at the screen "ONE! MORE! SCORE!"

[-] Malgas@beehaw.org 5 points 1 year ago

"Train pirate" has got to be one of the steampunkiest job titles I've ever heard.

[-] onlinepersona@programming.dev 82 points 1 year ago

The government better sue the train manufacturer and protect these hackers. The hackers saved the state millions - possibly hundreds of millions.

[-] Diplomjodler@feddit.de 81 points 1 year ago

Good opportunity for the new polish government to show that they're actually sane.

[-] duncesplayed@lemmy.one 59 points 1 year ago

Holy shit. If I understand correctly, the trains were programmed to use their GPS sensors to detect if they were ever physically moved to an independent repair shop. If they detected that they were at an independent repair shop, they were programmed to lock themselves and give strange and nonsensical error codes. Typing in an unlock code at the engineer's console would allow the trains to start working normally again.

If there were a corporation-sized mirror, I don't know how NEWAG could look at itself in it.

[-] Archpawn@lemmy.world 12 points 1 year ago

They weren't doing anything smartphone manufacturers haven't been doing for years. Or those guys that make McDonalds ice cream machines.

[-] kilgore_trout@feddit.it 13 points 1 year ago

With the difference that a government agency is operating these trains and that repairs are not cheap.

[-] gomp@lemmy.ml 2 points 1 year ago

Governments (and the public sector in general) are treated way worse by companies than private customers who can far more easily switch to a competitor or influence others to do so

[-] WashedOver@lemmy.ca 54 points 1 year ago

I wonder if they were taking notes from John Deere and the automotive industry or will it be the reverse here soon?

Just imagine all these vehicles that could be bricked for not going back to the stealerships for outrageous prices on parts and incompetent service.

Also the vehicles that could be disabled for not paying for device protection plan that allows your vehicle to operate safely. It would be a shame if your vehicle stopped working on your way to work or the hospital.

I suspect Tesla, BMW, and John Deere are the closest to this reality.

I sure hope the government doesn't help with another great cash for clunkers national program to get rid of more cars too old for these measures. Sure is a great way to drive new car sales though...

[-] RustedSwitch@lemmy.world 3 points 1 year ago

Add Mercedes to that list of companies close to doing this

[-] Blizzard@lemmy.zip 34 points 1 year ago

I wonder if they'll be able to overclock those trains or install some mods.

[-] Sotuanduso@lemm.ee 14 points 1 year ago

The trains run DOOM.

[-] JillyB@beehaw.org 12 points 1 year ago

I'm now imagining rgb trains. Mechanical turn styles, high refresh rate info screens, giant AIO coolers.

[-] SomeoneSomewhere@lemmy.nz 2 points 1 year ago

Plenty of modern rolling stock already has water cooled power electronics, oil-cooled transformers, and I'm sure there's RGB passenger information displays.

They also laugh at your little 120/140/200mm fans.

[-] SkaveRat@discuss.tchncs.de 1 points 1 year ago

Okay, but now we need to upgrade those industrial fans to noctua

[-] SomeoneSomewhere@lemmy.nz 1 points 1 year ago

Let me introduce you to ebm-pabst.

[-] PipedLinkBot@feddit.rocks 1 points 1 year ago

Here is an alternative Piped link(s):

https://www.piped.video/watch?v=hmrQ-xm546o

Piped is a privacy-respecting open-source alternative frontend to YouTube.

I'm open-source; check me out at GitHub.

[-] Moonrise2473@feddit.it 21 points 1 year ago

"The president of Newag contacted me," Cieszyński wrote. "He claims that Newag fell victim to cybercriminals and it was not an intentional action by the company

Yes, those cybercriminals that once infiltrated in a business network, instead of stealing data or holding ransoms, hide multiple iterations in the code of a snippet that only benefits the corp. Sure, they exist

[-] Malgas@beehaw.org 1 points 1 year ago

Also taking legal action against people who helped your customers resolve the consequences of such an attack seems perfectly normal and not at all contrary to that narrative.

[-] KingThrillgore@lemmy.ml 14 points 1 year ago* (last edited 1 year ago)

It would be interesting to see if Alstom, Hyundai Rotem, and Stadler Rail are doing the same. They are sitting on billions in public sector contracts.

[-] relevants@feddit.de 0 points 1 year ago

Stadler (sic)

?

[-] hexloc@feddit.nl 2 points 1 year ago
this post was submitted on 13 Dec 2023
507 points (99.2% liked)

Technology

35141 readers
212 users here now

This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.


Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.


Rules:

1: All Lemmy rules apply

2: Do not post low effort posts

3: NEVER post naziped*gore stuff

4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.

5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)

6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist

7: crypto related posts, unless essential, are disallowed

founded 5 years ago
MODERATORS