Oil, gas field sensors exposed to radio wave attack

Software vulnerabilities in sensors used by many oil and gas companies to monitor industrial processes are leaving these businesses vulnerable to potential remote attacks using radio waves, according to a computer security research firm.

Flaws in sensors used to monitor things such as temperature and pipeline pressure may even be fatal if exploited by attackers warned researchers at IOActive Inc., a Seattle, Wash-based security firm that specializes in smart grid technologies.

A Web-based compromise may result in monetary losses for an attack target, but the impact of a sensor attack on an energy company could result in loss of lives, warned Carlos Mario Panagos, a researcher for IOActive.


Panagos and fellow researcher Lucas Apa said that while the United States, Canada and other nations have been focusing in securing industrial control systems, many of these Internet-connected systems may not have gone through thorough security audits.

In a study of sensors manufactured by three major wireless automations systems makers, the they found that sensors typically communicate with a company’s network using radio transmitters on the 900MHz or 2.4Ghz bands. The sensors use the bands to report operation details on remote locations.

Many of the sensors tested contained weaknesses ranging from weak cryptography keys, software flaws and configuration errors.

In one instance, the researchers found that sensors shipped with identical cryptographic keys. This could lead to several companies using the device to sharing the same security keys.

The researchers also found that it was possible to modify monitor readings and disable sensors from up to 64 kilometers away.

Read the whole story here

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

Featured Articles

ADaPT connects employers with highly skilled young workers

Help wanted. That’s what many tech companies across Canada are saying, and research shows...

Unlocking Transformation: IoT and Generative AI Powered by Cloud

Amidst economic fluctuations and disruptive forces, Canadian businesses are steering through uncharted waters. To...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now