Zombie EAS Hack Attack Hits TV Stations

Hackers broke into the Emergency Alert Systems of KRTV Great Falls, Mont. (see video below); WBKP and WNMU Marquette, Mich., airing a warning that dead bodies were "attacking the living" and warned people not to "approach or apprehend these bodies as they are extremely dangerous." Local and state authorities and the FCC are investigating to determine how the hackers got access.
TVNewsCheck,

At least four TV stations across the country Monday were the victims of a hoax after a hacker broke into their Emergency Alert Systems.

KRTV Great Falls, Mon., initially made headlines Tuesday after a video of the alert, claiming “dead bodies were rising from their graves,” went viral on the Web. But the CBS affiliate wasn’t alone. WBKP and WNMU Marquette, Mich., also had the same alert played on their airwaves.

Story continues after the ad

The hack likely happened because station operators didn’t change the default password on their Common Alert Protocol Emergency Alert System, says Ed Czarnecki, senior director of strategy and regulatory affairs for Monroe Electronics, the main manufacturer of EAS systems across the country.

“Quite simply, someone made an unauthorized access to the stations’ firewall and somebody logged into the system using a default username and password,” says Czarnecki. “This is a simple matter of operational security best practices. You have to change your default password on any new device.”

Now local and state authorities and the FCC are investigating to determine how that unauthorized access was granted. Calls into the Michigan State Police and FCC weren’t immediately returned, although the FCC Tuesday evening ordered stations to take immediate action to secure their EAS systems.

A spokesperson for the Federal Emergency Management Agency acknowledged that there may have been "a breach of security" of the product used by some broadcasers.

Brand Connections

However, he added, "FEMA's integrated public alert and warning system was not breached or compromised and this had no impact on FEMA’s ability to activate the Emergency Alert System to notify the American public.FEMA will continue to support the FCC and other federal agencies looking into the matter."

After reviewing his station’s EAS security log Monday night, Kenn Baynard, WBKP operations manager in Marquette, said it was clear that someone made multiple attempts to break into the system. “They went in from the back door of this system and tried numerous passwords and have been doing so for days leading up to the hack,” Baynard says.

Before any real alert goes out, such as one from the National Weather Service, station executives are notified via email about it. That didn’t happen at the ABC affiliate on Monday afternoon, Baynard says. “It just went out by itself. There was no log about it, nothing. It just went out.”

Baynard is now blaming Monroe Electronics, claiming the software has a security flaw. “I spoke with an engineer in Montana using the same system, and it was hit the same exact way.”

Czarnecki stands by his argument, saying the company clearly states in its manual to change all default passwords, including the administrator password. He’s now telling all station operators to double-check their passwords and even choose a new password to avoid anything similar from happening.

“We’re not treating this lightly,” he says, adding the company is examining multiple options to fix any possible security flaws.

Ernest Sanchez, counsel for KENW Portales, N.M., said, in general, any business that has a responsibility to take reasonable action to protect against any kind of foreseeable cyber attack. “This should be a wakeup call to stations around the country to be very conscious about their EAS security,” he says.

As for who did the hacking is still being investigated.

Eric Smith, WNMU general manager, said Northern Michigan University’s forensics information technology staff traced the hack to an overseas IP address Tuesday morning.

“We have a good forensics IT staff that are very good at tracking where problems develop,” says Smith. “As protocol, we’ve turned the investigation over to the university’s public safety and police department.”

Karole White, president-CEO of the Michigan Broadcaster’s Association, said the group has been contacting other Michigan stations to ensure a similar attach has happened. She says this is the first time she’s ever heard of experienced this type of attack.

“Before a year or two ago, the EAS systems were hooked up through phone lines, now they’re hooked up to the Internet,” she says. “On the bright side, this minor attack, while it may have confused or frightened people, uncovered some weaknesses that we can look at, fix and adjust to, to ensure this doesn’t happen again.”

Tags

Comments (4) -

TVMN Nickname posted over 4 years ago
The last line says it all: We have become a gullible breed.
Thomas Scanlan posted over 4 years ago
I'm proud to know both Kenn and Eric, and whoever the hackers are, they should know they're messing with some of the best and most technically proficient GM's in the business. Way to go, guys!!
Kenn Baynard Nickname posted over 4 years ago
Thanks Tom!
John Russo posted over 4 years ago
> Baynard is now blaming Monroe Electronics, > claiming the software has a security flaw. Yeah, it's what's known in tech support nomenclature as an ID-10-T error. It's not the lock company's fault if he leaves his keys under the welcome mat, I'm exhausted to say. “I spent my money on the Clapgo D. 29; it's the most impenetrable lock on the market today. It has only one design flaw: the door... [closing door] must be closed!” – (Seinfeld: Season 1; Episode 3: “The Robbery”)
Marketshare Blog Playout Blog

Twitter

TVNewsCheck

Ratings

Overnights, adults 18-49 for March 23, 2017
  • 1.
    2.0/8
  • 2.
    1.3/5
  • 3.
    0.8/3
  • 4.
    0.8/3
  • 5.
    0.5/2
  • 6.
    0.3/1
Source: Nielsen

Reviews

  • Maureen Ryan

    It’s appropriate that The Good Fight on CBS All Access has a slightly more jagged and splintered atmosphere than The Good Wife, the long-running CBS drama that starred Julianna Margulies. In the opening minutes of the first episode, Diane Lockhart (Christine Baranski), watches as Donald Trump is sworn in as the nation’s 45th president. Before the 50-minute pilot is over, the jarring changing of the guard in Washington is the least of her troubles. Baranski brings a heartbreaking rawness to her performance as Diane, who never got enough meaningful screen time on The Good Wife. Diane’s plight is thus personal but also metaphorical: She likens the collapse of every pillar of her supposedly solid and trustworthy world to a nightmare.

  • David Wiegand

    It’s hard to say which is more excessive in the new CBS crime thriller, Training Day: the action or the dialogue. But in either case, the series from Jerry Bruckheimer and Anthony Fuqua goes a long way toward waking up broadcast TV’s mid-season. There is plenty of action, enhanced by fast-paced editing, in the three episodes made available to critics. And there’s violence. But most of all, there is dialogue so rich and colorful, it almost evokes the stuff of guys like Raymond Chandler and Dashiell Hammett, or at least Sgt. Joe Friday. Training Day just may get away with murder on Thursday nights when the numbers are counted.

  • Hank Stuever

    Well, they only had to remake a jillion TV shows from yesteryear to finally get one exactly, perfectly right. Not only is Netflix’s reimagined One Day at a Time a joy to watch, it’s also the first time in many years that a multicamera sitcom (the kind filmed on a set with studio-audience laughter) has seemed so instinctively comfortable in its own skin. It doesn’t try to subvert or improve on the sitcom format; it simply exhibits faith that the sitcom genre can still work in a refreshing and relevant way.

  • Hank Stuever

    Michelle Dockery has made an astonishing career swerve from Downton Abbey on PBS to TNT’s intriguing and impressively seedy crime drama Good Behavior. Dockery throws herself into the role of Letty Raines — a liar, thief and ex-con in North Carolina who sweats long shifts as a waitress and relies on a pleasant-voiced motivational app to keep her off drugs and booze, in between visits with her parole officer. The true accomplishment of Good Behavior is that none of this seems as hokey as it sounds. Dockery digs deep and gives a frenetic and often moving performance.

  • Neil Genzlinger

    The intriguing CW series Frequency starts out looking as if it were going to be a bittersweet, nostalgia-tinged time-travel drama in the Stephen King-Twilight Zone lineage, and that probably would have made for a comfortably satisfying show, the kind you can half-watch while doing something else. In the last third of the premiere, though, things take a joltingly different, more complicated path. Sorry, couch potatoes, but it looks as if you might have to keep both eyes on the screen for this one.

  • Rob Owen

    Easily fall’s best broadcast network comedy pilot, NBC’s The Good Place offers a clever high-concept premise that’s complemented with intelligent, sometimes absurdist humor. Created by Michael Schur, co-creator of NBC’s Parks and Recreation, The Good Place is a highly serialized series that’s essentially set in heaven and stars Kristen Bell and Ted Danson. NBC made five episodes of The Good Place available for review, and the show not only holds up, but also it improves, deepening characters that initially feel one-note and frequently leaving viewers guessing with cliffhanger endings to many of the episodes. The combination of snappy dialogue and winning but flawed characters makes The Good Place a great bet for fans of smart TV comedy.

This advertisement will close automatically in  second(s). You will see this ad no more than once a day. Skip ad