Light Dark
July 13, 2016 By Pamela Cobb 2 min read
X-Force
Threat Intelligence

Television shows have served as a respite to real life since TV was first invented. In my own life, analyzing episodes of “Lost” on a newborn online community kept me company during the very real demands of an actual newborn while I was on maternity leave. What is perplexing about “Mr. Robot,” however, is how it freakishly mirrors real life while also providing the escapist elements that make for good television.

Connected Building Hacks Get Real

With the season-two premiere of Mr. Robot looming, fans are waiting to see if the second season can possibly match the intricacy and engagement of the first.

I’ve found that our friendly water cooler-based debates don’t center around the feasibility of the hacks so much as the fashion choices on the show. That’s because there’s zero debate on the authentic representation of the hacks on the show, compared to a lively discussion on whether hackers in hoodies are passé.

IRL*

In real life*, the IBM X-Force research team has done its fair share of vulnerability and penetration testing. One notable example was the ethical hack of a connected building, which successfully took advantage of a building automation system to control the environment. Not only did it affect temperature control systems, but it also connected to the central server and extended control to several other geographically disperse buildings.

The hack was ultimately possible through a mix of policy settings on routers, lack of encryption on files containing passwords, duplicate passwords across systems and internal systems connected directly to the internet. It is suspected the X-Force researchers did not wear hoodies while conducting the ethical hack, but these reports are unconfirmed.

#OMG #IoT

If you search the archives for Internet of Things (IoT), you’ll find a treasure trove of warnings and advice for developers. With phrases like “too big to protect” or “double-edged sword” often used when discussing IoT, it’s no wonder there are so many articles about it.

With the new season of “Mr. Robot” taking place after the infamous Evil Corp hack, I’m curious how prominent IoT may be in the story. The series’ technical consultant Kor Adana alluded to a possible inclusion in a recent interview, leaving me to fervently hope that the dramatic tension gets ratcheted up when Evil Corp’s break-room refrigerator gets hacked and the fsociety gang adds insult to injury by revealing exactly how many flavored creamers the conglomerate consumes each month.

To learn more about an actual connected building hack, view the replay of the live session with IBM X-Force.

 |  |  |  |  | 
Pamela Cobb
Market Segment Manager, IBM X-Force and Security Intelligence

More from X-Force
January 17, 2025

Being a good CLR host – Modernizing offensive .NET tradecraft

14 min read - The modern red team is defined by its ability to compromise endpoints and take actions to complete objectives. To achieve the former, many teams implement their own custom command-and-control (C2) or use an open-source option. For the latter, there is a constant stream of post-exploitation tooling being released that takes advantage of various features in Windows, Active Directory and third-party applications. The execution mechanism for this tooling has, for the last several years, relied heavily on executing .NET assemblies in…

January 6, 2025

Abusing MLOps platforms to compromise ML models and enterprise data lakes

15 min read - For full details on this research, see the X-Force Red whitepaper “Disrupting the Model: Abusing MLOps Platforms to Compromise ML Models and Enterprise Data Lakes”.Machine learning operations (MLOps) platforms are used by enterprises of all sizes to develop, train, deploy and monitor large language models (LLMs) and other foundation models (FMs), as well as the generative AI (gen AI) applications built on top of these models. The rush to leverage AI throughout enterprises has meant that security has been often…

December 23, 2024

FYSA – Adobe Cold Fusion Path Traversal Vulnerability

2 min read - Summary Adobe has released a security bulletin (APSB24-107) addressing an arbitrary file system read vulnerability in ColdFusion, a web application server. The vulnerability, identified as CVE-2024-53961, can be exploited to read arbitrary files on the system, potentially leading to unauthorized access and data exposure. Threat Topography Threat Type: Arbitrary File System Read Industries Impacted: Technology, Software, and Web Development Geolocation: Global Environment Impact: Web servers running ColdFusion 2021 and 2023 are vulnerable Overview X-Force Incident Command is monitoring the disclosure…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2025 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature