Zombie EAS Hack Attack Hits TV Stations

Hackers broke into the Emergency Alert Systems of KRTV Great Falls, Mont. (see video below); WBKP and WNMU Marquette, Mich., airing a warning that dead bodies were "attacking the living" and warned people not to "approach or apprehend these bodies as they are extremely dangerous." Local and state authorities and the FCC are investigating to determine how the hackers got access.
TVNewsCheck,

At least four TV stations across the country Monday were the victims of a hoax after a hacker broke into their Emergency Alert Systems.

KRTV Great Falls, Mon., initially made headlines Tuesday after a video of the alert, claiming “dead bodies were rising from their graves,” went viral on the Web. But the CBS affiliate wasn’t alone. WBKP and WNMU Marquette, Mich., also had the same alert played on their airwaves.

Story continues after the ad

The hack likely happened because station operators didn’t change the default password on their Common Alert Protocol Emergency Alert System, says Ed Czarnecki, senior director of strategy and regulatory affairs for Monroe Electronics, the main manufacturer of EAS systems across the country.

“Quite simply, someone made an unauthorized access to the stations’ firewall and somebody logged into the system using a default username and password,” says Czarnecki. “This is a simple matter of operational security best practices. You have to change your default password on any new device.”

Now local and state authorities and the FCC are investigating to determine how that unauthorized access was granted. Calls into the Michigan State Police and FCC weren’t immediately returned, although the FCC Tuesday evening ordered stations to take immediate action to secure their EAS systems.

A spokesperson for the Federal Emergency Management Agency acknowledged that there may have been "a breach of security" of the product used by some broadcasers.

Brand Connections

However, he added, "FEMA's integrated public alert and warning system was not breached or compromised and this had no impact on FEMA’s ability to activate the Emergency Alert System to notify the American public.FEMA will continue to support the FCC and other federal agencies looking into the matter."

After reviewing his station’s EAS security log Monday night, Kenn Baynard, WBKP operations manager in Marquette, said it was clear that someone made multiple attempts to break into the system. “They went in from the back door of this system and tried numerous passwords and have been doing so for days leading up to the hack,” Baynard says.

Before any real alert goes out, such as one from the National Weather Service, station executives are notified via email about it. That didn’t happen at the ABC affiliate on Monday afternoon, Baynard says. “It just went out by itself. There was no log about it, nothing. It just went out.”

Baynard is now blaming Monroe Electronics, claiming the software has a security flaw. “I spoke with an engineer in Montana using the same system, and it was hit the same exact way.”

Czarnecki stands by his argument, saying the company clearly states in its manual to change all default passwords, including the administrator password. He’s now telling all station operators to double-check their passwords and even choose a new password to avoid anything similar from happening.

“We’re not treating this lightly,” he says, adding the company is examining multiple options to fix any possible security flaws.

Ernest Sanchez, counsel for KENW Portales, N.M., said, in general, any business that has a responsibility to take reasonable action to protect against any kind of foreseeable cyber attack. “This should be a wakeup call to stations around the country to be very conscious about their EAS security,” he says.

As for who did the hacking is still being investigated.

Eric Smith, WNMU general manager, said Northern Michigan University’s forensics information technology staff traced the hack to an overseas IP address Tuesday morning.

“We have a good forensics IT staff that are very good at tracking where problems develop,” says Smith. “As protocol, we’ve turned the investigation over to the university’s public safety and police department.”

Karole White, president-CEO of the Michigan Broadcaster’s Association, said the group has been contacting other Michigan stations to ensure a similar attach has happened. She says this is the first time she’s ever heard of experienced this type of attack.

“Before a year or two ago, the EAS systems were hooked up through phone lines, now they’re hooked up to the Internet,” she says. “On the bright side, this minor attack, while it may have confused or frightened people, uncovered some weaknesses that we can look at, fix and adjust to, to ensure this doesn’t happen again.”

Tags

Comments (4) -

TVMN Nickname posted over 2 years ago
The last line says it all: We have become a gullible breed.
Thomas Scanlan posted over 2 years ago
I'm proud to know both Kenn and Eric, and whoever the hackers are, they should know they're messing with some of the best and most technically proficient GM's in the business. Way to go, guys!!
Kenn Baynard Nickname posted over 2 years ago
Thanks Tom!
John Russo posted over 2 years ago
> Baynard is now blaming Monroe Electronics, > claiming the software has a security flaw. Yeah, it's what's known in tech support nomenclature as an ID-10-T error. It's not the lock company's fault if he leaves his keys under the welcome mat, I'm exhausted to say. “I spent my money on the Clapgo D. 29; it's the most impenetrable lock on the market today. It has only one design flaw: the door... [closing door] must be closed!” – (Seinfeld: Season 1; Episode 3: “The Robbery”)

Classifieds

Marketshare Blog Playout Blog

Twitter

TVNewsCheck

Ratings

Overnights, adults 18-49 for April 23, 2015
  • 1.
    2.0/7
  • 2.
    2.0/7
  • 3.
    1.0/3
  • 4.
    0.9/3
  • 5.
    0.9/3
  • 6.
    0.5/2
Source: Nielsen

Reviews

  • Joanne Ostrow

    Two Jews walk into a bar .... There's no punchline. It's a silly, sentimental episode of FX's The Comedians in which Billy Crystal and Josh Gad sing karaoke in L.A.'s Little Tokyo and reminisce about aging, family and the nature of comedy. The generation gap provides the crux of a comedy collaboration by Crystal (old-school Borscht Belt) and Gad (youthful Broadway) that is by turns gently narcissistic, occasionally gross and musically inclined. The 13 episodes are fun, not groundbreaking, but slickly produced and accented with musical comedy. Like the two stars, the series is endearing, loud and desperate for attention, but ultimately a love letter to comedy and comedy history.

  • David Wiegand

    Kings, queens, presidents and dictators all have official histories, but power brokers, as they embody the precepts of Machiavelli, often operate in whole or part behind the scenes. Henry VIII takes second billing in PBS's Wolf Hall, the sprawling six-hour adaptation of two historical novels by Hilary Mantel. The miniseries is both brilliant and maddening and only really pays off in the final two episodes, after you’ve more or less figured out who the characters are, how they’re related to each other, and what the hell they are saying during endless, slow-moving conversations spoken, of course, in what to many Yanks is a foreign tongue: British English.

  • David Hinckley

    HBO's four-hour documentary Sinatra: All or Nothing at All captures all the singer's swash and buckle. It also reminds us, in a smart way, that Sinatra became one of the four or five best popular singers of the 20th century. In other words, director Alex Gibney hasn’t set out to make headlines by focusing on the flaws or the dark side of a life that had plenty of both.

  • Brian Lowry

    NBC describes American Odyssey as “Traffic-like,” which might explain the lack of inspiration permeating this multi-pronged drama, which, much like sibling USA’s Dig, hinges on a vast (and tedious) conspiracy. The intersecting threads involve a U.S. soldier in North Africa, a corporate lawyer and an Occupy-type political activist, each embroiled in a monstrous plot reaching up and into government. First-rate casting — including Anna Friel, Peter Facinelli and Treat Williams — can’t obscure the been-there, seen-that sensation, which doesn’t spur much curiosity about how these tentacles connect or offer much hope the show will last long enough to find out.

  • Ed Bark

    Quotation marks should be used as disqualifiers whenever the “Church” of Scientology is put into print. This is no more a “Church” than an apple is an orange. But it’s been recognized as such by the IRS. How and why make for one of the more startling and dismaying segments in Going Clear: Scientology and the Prison of Belief. It’s an extraordinary investigative documentary with the power to provoke anger, astonishment and any number of other strong emotions. HBO, despite an organized campaign of threats and intimidation from the “religion’s” legions of automatons, will premiere the two-hour film on Sunday, March 29. Must-see television? That’s an understatement.

  • Mark Perigard

    It’s the Walking Dead/Quincy/Psych mashup you didn’t know you wanted. But give iZombie a chance. You just might love it. CW, home to the DC Comics hits Arrow and Flash, dips into the medium again for this horror dramedy loosely based on the book from DC’s mature reader imprint Vertigo. iZombie is superbly cast and displays wit and surprises you don’t often find in the comics-to-TV genre.

  • Rob Owen

    Just a few weeks ago Netflix debuted The Unbreakable Kimmy Schmidt, a smart, funny series originally ordered by NBC and then sold off to Netflix when NBC executives realized they were cultivating a schedule that couldn’t possibly abide intelligent comedy. So in its place viewers get the Ellen DeGeneres-executive produced One Big Happy, a truly dreadful comedy that is the antithesis of Kimmy Schmidt. Obvious, dumb and mostly unfunny, One Big Happy is an embarrassment for all involved. It won’t have a happy ending. For all involved, it will be best if it just fails quickly and then quietly disappears.

  • David Hinckley

    Mark Schwahn has accomplished the near-impossible feat of making fake British royals behave worse than the real ones. Also, wisely, E!'s The Royals, a big new soapy drama about a fictional British royal family, isn’t populated with characters who mirror specific individuals in the real-life ruling Windsors. The quirks and neuroses are more mix-and-match.

  • Rob Owen

    TV fans who decry the dearth of quality comedies, especially viewers who appreciated NBC’s late 30 Rock, will revel in the first Netflix half-hour comedy series, the Tina Fey-produced Unbreakable Kimmy Schmidt. Originally developed and ordered by NBC, the show segued to Netflix once NBC executives realized they didn’t have an obvious, hospitable place to put it on NBC’s primetime schedule. In other words, it was too smart/too weird a fit for NBC’s more mainstream fare. It’s a smart, funny series, and it’s a relief to know Netflix saved it from what was sure to be terminal neglect had it aired on NBC.

  • James Poniewozik

    ABC's American Crime is, like a lot of TV drama lately — Secrets and Lies, Broadchurch, The Killing — built around a murder. Someone has been killed, suspects have been apprehended, no one is sure yet what went down and why. But while the first four episodes of the series are gripping, and each introduces new complexity to a sweeping story, I would not call it a murder mystery. And that’s precisely why it works.

This advertisement will close automatically in  second(s). You will see this ad no more than once a day. Skip ad