506 matches found
Stealing container ship cargo through LOC messaging
In a previous post post I looked at hacking and manipulating EDIFACT messages to destabilise a ship. However, criminals will be far more interested in using these techniques to re-route containers and steal their contents. Similar techniques appear to have been used to steal containers in the pas...
What can maritime insurers learn from cyber liability insurers?
I first got involved in cyber liability insurance back in 2011. An underwriter contacted me for some advice around a new ‘cyber’ thing that they were planning to launch and had seen me speak at a conference. What I discovered about the nascent industry shocked me: premiums set with no understandi...
Hacking train passenger Wi-Fi
After speaking about Wi-Fi security at a rail industry conference last week, it struck me that very insecure passenger networks are making their way on to trains. So, here’s a quick check list for making sure your pax Wi-Fi network is secure. Similar checks could be applied to your guest network ...
Man Climbs Severn Bridge. Your office is twice as easy and half as scary
So you think no one would ever sneak into your business? Think Again. The man who climbed the Severn Bridge and broke into the Big Brother house seems to have method to his madness. Here’s why. When I describe Social Engineering to some I get a common response: “Yeah, but who would ever do that i...
‘Hacking’ the Nespresso Prodigio and Jura E8 coffee machines
You’ll probably know by now that I have a particular interest in the security of IoT coffee machines and tea kettles. Sometimes security is so poor that we have to laugh. Such simple security issues. Now, when I’m feeling lazy and possibly a bit hung over, I really can’t be bothered to make coffe...
Soldering for Reverse Engineering. Swapping out eSIMs with “normal” SIMs
Sometimes, the mobile devices we work on only have cellular data connections. In those instances, we’re usually pretty interested in trying things like this to get credentials for the APN so we can start snooping around on that. We’re also really interested in monitoring what kind of traffic is...