SmartMeters Facilitate Cyber War Against US

Posted on November 6, 2011 by David

SmartMeters Facilitate Cyber War Against US
(c) Copyright 2011 David j Dilworth

This didn’t happen — yet.

New York Power Blackout 2003

New York Power Blackout 2003 (simulation)

“Within a quarter of an hour, 157 major metropolitan areas have been thrown into knots by a nationwide power blackout hitting during rush hour. . .

“Subways have crashed in New York, Oakland, Washington, and Los Angeles. . . . Aircraft are literally falling out of the sky as a result of midair collisions across the country. . . . Several thousand Americans have already died.”

Richard Clarke-Security Advisory to Presidents Obama & Bush

This is an excerpt from “Cyber War” by Richard Clarke, former National Security Advisor to Presidents Obama and Bush. Its an “edgy account of America’s vulnerability to hackers, both state-sponsored and individual, especially from China.” – Seymour Hersch, Online Threat, New Yorker, Nov 2010

How does this relate to us as individuals? Well, a local scientist, Monterey Councilman Jeff Haferman, raised a concern at a Monterey Council meeting about Smartmeters. He asked “If PG$E (local electric power provider) can turn off your power remotely with a smartmeter, what keeps a hacker from doing that ?” Or worse, he asked “what keeps a hacker from turning off whole neighborhoods – or an entire community ?

The PG&E representative was silent until prompted to respond. “I don’t have any information on that. I’ll get back to you.” That was in February 2011, its now October and PG&E has made no response or answer yet.

Hackable WiFi Meter - called a 'Smart'meter

What we have learned since then is that your data going out and PG&E’s “Power Shutoff” radio commands are not encrypted at the neighborhood level. This means “Smart”meter communication data is in “plain English” — it is readable by anyone with a laptop and WiFi. This means your so-called “Smart”meter is easily controlled by anyone with a laptop and a WiFi. Is this a wild speculative fantasy? No.

This “Fraternal” WiFi Break-In Did Happen:

Here’s a recent CBS article giving an actual example of a virtually identical break in of medical equipment – “Black hat hacker can remotely attack insulin pumps and kill people.” The article mentions already successful WiFi attacks on heart pacemakers and defibrillators. (“Pacemakers and implanted defibrillators are vulnerable to wireless attacks that could kill tens of thousands“)

A CNN report warned “‘Smart Grid’ may be vulnerable to hackers.” Only a month later an actual hacker Smart Grid Infection was detected and reported. That infection

“could allow outside agents to seize control of the grid and disrupt the flow of electricity across the nation.”

Even if utilities like PG&E ever intended to add encryption as a policy – some “smart”meters don’t really encrypt their data —

“Verizon has also discovered problems with some smart meters being sold on the market. In one case, a smart meter developer claimed their device was encrypted but Verizon’s tests showed it was protected only by a basic authentication mechanism.”

Similar to Washington DC and Silicon Valley, the Monterey Peninsula community probably has more than its share of foreign spies.

WiFi Hacker Turning Your Power Off

So here’s (most of) the recipe an ordinary and not-even-clever foreign spy could follow (in his spare time) to shut down our whole community’s electric power. He does not need to have any hacking skills. (It took an amateur computer user only two days to get more control than is described here.)

1. Rent a cheap house.

2. Turn on laptop to start recording the unencrypted Smartmeter signals. The unencrypted signals are at 900 MHz (megahertz) and if the premise also has a “smart” gas meter, the frequency from the electric meter to the gas meter is 2.4 GHz (gigahertz) – the same as your WiFi.

3. Then stop paying the bill – until PG&E sends the radio frequency shutoff command to your Smartmeter through the air.

4. After PG&E has turned off your power, then pay the Bill so PG&E turns power back by sending the radio frequency “ON command” to your Smartmeter through the air.

5. Analyze the recorded data to uncover the (unencrypted) “Shutoff command” and the “ON command.”

6. Repeat at another house until you find the general format for the “Shutoff command.”

Compare the signals sent to the first house and the second house to see how the “Shutoff command” changes from one house to another. (It probably just uses a 10 to 14 digit incrementing system for a specific neighborhood. Ten digits would allow more than a billion devices.)

Now the foreign spy will have all the information needed to shut down your house electricity and millions of others– and probably all electricity and gas for your community’s businesses and government as well. (I will not publish any information on how to broadcast the data to actually shut the meters off.) It is likely that the format of the “Shutoff command” and the “ON command” is the same or has very little variation across the US.

WiFi Hacker Turning Power Off forAll of California

I’m not the only one concerned about this potential harm. One firm “successfully reverse engineered a smart meter–known as Advanced Metering Infrastructure (AMI)–and demonstrated the ability to inject a worm into the grid that would grant a hacker full control over the grid devices.”

Presidential Security Advisor Richard Clarke is right. Just because there is not yet any documented widespread power outage caused by hackers – does not mean it cannot happen. Clarke may have some technical details a bit off, but his description of the threat to our nation’s electrical power system is alarmingly accurate.

Commentary: The so-called “Smart”meter blitz is a greed driven rush to ignore serious harm by PG&E that the California Public Utilities Commission rubber-stamped and refused to require an Environmental Impact Report.

An Environmental Impact Report needs to be prepared for the many harms posed by “Smart”meters.

Then we need to require SmartER meters (SmartER-meters Solve All the “Smart-meter” Problems) that eliminates WiFi (commands and data privacy loss) and the dangerous high-amp fire hazard switch.

Additional reading :

“Smart Grid Privacy And Security Risks Loom For Agencies” by Dan Verton

27 Exclusive Smartmeter Articles on HOPE’s Website

Hacking water meters is easier than it should be

Cyber-spying poses economic threat to U.S., firms

Pacemakers, defibrillators open to attack
Crims could send 830 volts straight to your heart

Share
This entry was posted in Uncategorized. Bookmark the permalink.

3 Responses to SmartMeters Facilitate Cyber War Against US

  1. Pingback: 27 Smartmeter Original Articles on HOPE’s Website | HOPE: News and Community

  2. Ann Z Cox says:
    March 25, 2012 at 9:55 pm

    We have been fighting smart meters with all our power. The PUC and NVE have all the power, we the people, have none. Theses ugly things are being crammed down our throats and we highly resent it. We have tried and tried to be heard….we have not been!!! I protest having my analog meter removed and I protest being “fined” for months and years after, being subject to 4th amendment violations, health hazards, etc. I want to keep my analog meter! NVE can stop this nonsense–but it wants the fed. Handout $$$!! Ann Cox in Carson City, NV

  3. Norm says:
    June 5, 2014 at 12:51 pm

    We are in a battle! Remember what Winston Churchill said in 1941.

    Never give up! Never, never, never, never.

Leave a Reply