this post was submitted on 13 Dec 2023
1441 points (99.5% liked)

Technology

60091 readers
2633 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 

In one of the coolest and more outrageous repair stories in quite some time, three white-hat hackers helped a regional rail company in southwest Poland unbrick a train that had been artificially rendered inoperable by the train’s manufacturer after an independent maintenance company worked on it. The train’s manufacturer is now threatening to sue the hackers who were hired by the independent repair company to fix it.

After breaking trains simply because an independent repair shop had worked on them, NEWAG is now demanding that trains fixed by hackers be removed from service.

top 50 comments
sorted by: hot top controversial new old
[–] ShittyBeatlesFCPres 299 points 1 year ago (13 children)

This story should be on every newspaper front page right below war correspondents.

[–] Lev_Astov 35 points 1 year ago

Yeah, especially in the EU where apparently their laws regarding circumventing DRM might make the people who fixed this the bad guys instead of this comically evil manufacturer who put GPS kill switches on public passenger trains.

load more comments (12 replies)
[–] BloodSlut 291 points 1 year ago (2 children)

"We didn't add a kill switch to our trains to force the use of our maintenance service, but fuck the hackers that removed the kill switch we didn't implement, and the trains that were hacked and don't have the kill switch we didn't add should be removed from service."

[–] Th3D3k0y 157 points 1 year ago* (last edited 1 year ago) (6 children)

Dear Reader,

Regarding your recent free and non-profitable un-fucking of our problem, please use the honor system and manually refuck yourself.

Love, Technology Companies.

[–] [email protected] 14 points 1 year ago

Someone's gonna figure out a horror movie for this called The Refucker

load more comments (5 replies)
[–] Jessvj93 57 points 1 year ago

"And how dare those hackers go through all the trouble of finding those (literal) GPS coordinates of train maintenance centers not in our system to circumvent us getting more money."

[–] [email protected] 182 points 1 year ago (2 children)

That's awesome. Man, fuck that company. Bricking a train? Outrageous.

[–] [email protected] 85 points 1 year ago (8 children)

Poland ought to ban that company from ever working or operating or selling any products inside of its country and any trains made by that company that are not currently owned by Poland should be prevented from traveling on the tracks that cross through Poland.

[–] [email protected] 35 points 1 year ago

This is the kind of government intervention I can get behind. This story is so outrageous, it's hard to believe it's true.

load more comments (7 replies)
[–] [email protected] 47 points 1 year ago (2 children)

Run by fucking criminals. We should brick them like they're The Sticky Bandits

[–] [email protected] 13 points 1 year ago

Better to brick them like The Cask of Amontillado.

load more comments (1 replies)
[–] DacoTaco 171 points 1 year ago* (last edited 1 year ago) (2 children)

The person is doing a talk about it in hamburg, germany (37c3) next week. Its on my to watch list because that sounds hella interresting.

Edit : 37c3 list of talks : https://halfnarp.events.ccc.de/#dec115da17562cebafa9ba7a150a4fc607c25c880c03593dcc8da6087c9441a4

[–] khannie 38 points 1 year ago (7 children)

That actually does sound hella interesting. I'm saving your comment to try to remember but actually look it up in about two years when I scroll back though my saved posts.

[–] YoorWeb 15 points 1 year ago (2 children)
[–] Holyginz 13 points 1 year ago (2 children)

Went to subscribe to it until I remembered i don't speak German lol

[–] [email protected] 18 points 1 year ago

nearly all talks are either in English or have English translations. not sure if they're available on YouTube but you should be able to find everything on https://media.ccc.de

load more comments (1 replies)
load more comments (1 replies)
load more comments (6 replies)
[–] [email protected] 14 points 1 year ago (2 children)

It's 37c3, but thx for the hint. The talk is called Breaking "DRM" in Polish trains by Redford, q3k, MrTick

I will try to watch it on stage, unfortunately still no final schedule available

load more comments (2 replies)
[–] NeoNachtwaechter 107 points 1 year ago (1 children)

Nowadays satire can never be as good as reality is.

load more comments (1 replies)
[–] [email protected] 93 points 1 year ago (2 children)

Steam engine breaks, you can fix it.

Steam engine with digital circuit breaks, you're a hacker, a pirate. DRM was a mistake.

[–] [email protected] 51 points 1 year ago

But how else could companies make more money off of something you already paid for? Will someone think of the shareholders‽

load more comments (1 replies)
[–] [email protected] 81 points 1 year ago (3 children)

I wonder if they were taking notes from John Deere and the automotive industry or will it be the reverse here soon?

Just imagine all these vehicles that could be bricked for not going back to the stealerships for outrageous prices on parts and incompetent service.

Also the vehicles that could be disabled for not paying for device protection plan that allows your vehicle to operate safely. It would be a shame if your vehicle stopped working on your way to work or the hospital.

I suspect Tesla, BMW, and John Deere are the closest to this reality.

I sure hope the government doesn't help with another great cash for clunkers national program to get rid of more cars too old for these measures. Sure is a great way to drive new car sales though...

[–] Maggoty 24 points 1 year ago (1 children)

Oh don't count GM and a Ford out of it. They're already kicking android auto and Apple car to the curb so they can control more stuff and get access to more data. The savvier they get the closer that comes to reality.

Of course, by the end of our lives you won't own a car at all. You'll subscribe to a car company that will act like a hybrid ride share and rental program. Commutes will be on a rideshare basis and you'll be able to rent a car for a weekend road trip.

[–] [email protected] 15 points 1 year ago* (last edited 1 year ago) (3 children)

I just heard about GM this morning in my tech news. I didn't realize that about Ford too.

I've drawn a line in the sand with my vehicles at about 2011 for tech. I love tech and I love cars but just not into the current versions of everything being touch screen controls.

Give me knobs for climate controls, gear shifters, and gauges for the rest. They don't need all of these computer systems that fail or become outdated as soon as they are released like the manufacturer's nav systems. We also don't need them to stop working completely because a sensor failed and can only be replaced by the dealer.

My phone in a holder can be the smartest part of the car for me thanks.

load more comments (3 replies)
load more comments (2 replies)
[–] [email protected] 78 points 1 year ago* (last edited 1 year ago) (3 children)

SPS became desperate and Googled “Polish hackers” and came across a group called Dragon Sector, a reverse-engineering team made up of white hat hackers.

Hilarious. I hope 404 continues with this level of high quality journalism.

Dragon sector, who they hired, is a security capture the flag team.

https://dragonsector.pl/

Edit: Socials of those who worked on it

https://social.hackerspace.pl/@q3k
https://infosec.exchange/@mrtick
https://infosec.exchange/@redford

[–] [email protected] 21 points 1 year ago* (last edited 1 year ago) (3 children)

TIL that [security CTF](https://en.m.wikipedia.org/wiki/Capture_the_flag_(cybersecurity)) is

an exercise in which participants attempt to find text strings, called "flags", which are secretly hidden in purposefully-vulnerable programs or websites

Never heard of this and I may not be alone in that. Thanks for pointing this out.

load more comments (3 replies)
load more comments (2 replies)
[–] sanqueue 64 points 1 year ago (1 children)

This is good. Someone did that for printers too

[–] Lemminary 41 points 1 year ago (3 children)

And American Weight (?) digital scales. The ones that brick themselves after 2,000 uses because how dare you only pay once.

[–] [email protected] 31 points 1 year ago

Lol. Always suspected there was a scam there, but every time I bring it up in a conversation - people just call me a conspiracy theorist.

This goes for pretty much everything though. Planned obsolescence is real, but people think it's just the natural way of things.

load more comments (2 replies)
[–] yamanii 64 points 1 year ago (4 children)

The anti-circumvention clause is being abused for some years now, it's disgusting.

load more comments (4 replies)
[–] [email protected] 64 points 1 year ago (3 children)
load more comments (3 replies)
[–] [email protected] 42 points 1 year ago

I like how, instead of recognizing that they got caught, now the train manufacturer is claiming this is some kind of dark PR strategy.

If it is, then please show the public that it's a dark PR strategy by explaining the hidden unlock codes and the DRM code!

[–] EdibleFriend 35 points 1 year ago (1 children)

I hate this fucking planet.

[–] DuckOverload 26 points 1 year ago (1 children)

I think this is pretty cool. Sure, capitalists are gonna capitalist, but here we have subversive moves in a positive direction.

[–] EdibleFriend 13 points 1 year ago

Oh yeah what the people did to get around this is fucking awesome I do love that side of this story don't get me wrong.

[–] RememberTheApollo_ 26 points 1 year ago

If they required the trains to be serviced by manufacturer they should have written it into a mandatory service contract at time of sales.

[–] alphacyberranger 20 points 1 year ago (4 children)
load more comments (4 replies)
[–] simin 15 points 1 year ago (2 children)

the world's not one's to fix, learn to protect yourself.

load more comments (2 replies)
[–] btr_fan87 14 points 1 year ago (2 children)

Artificially bricked?! Who the hell keeps giving Viagra to trains? Evil bastards.

load more comments (2 replies)
load more comments
view more: next ›