Project Brainfog Unveils: Is Your Smart City Vulnerable to a Cyber Comedy of Errors?
Project Brainfog uncovers a staggering 800 vulnerabilities in building automation systems worldwide, revealing the real-world risks of dormant code and corporate mergers. Gjoko Krstic’s relentless research shows how forgotten lines of code have left modern cities vulnerable to remote takeovers, highlighting a cautionary tale of cybersecurity blind spots.
Hot Take:
When pulling an all-nighter, most people settle for a cup of coffee and a blurry-eyed morning. But Gjoko Krstic? He dives into the Matrix and emerges with 800 zero-days. Who knew insomnia could be a cybersecurity superpower? Maybe next time, he’ll find the meaning of life hidden in code — or at least a hidden stash of cat memes.
Key Points:
- Gjoko Krstic discovered over 800 vulnerabilities in building automation systems worldwide.
- The systems, operating in over 30 countries, include critical infrastructure like hospitals and airports.
- An 18-year-old codebase, passed through multiple corporate mergers, was at the heart of the vulnerabilities.
- Vulnerabilities included backdoors, unencrypted firmware, and unauthenticated exploits.
- The vendor’s response included inconsistent vulnerability scoring and silent fixes.
Already a member? Log in here