A vulnerability and an administrator password that can be accessed and controlled externally to Google buildings are also known

A security company conducting a project to investigate the vulnerability of industrial control system (ICS)CylanceHas hacked into Google's building management system in Sydney, Australia, and showed that facilities such as building water supply, electricity, gas and air conditioning were externally controllable via the Internet.

Cylance Tech Blog | Google's Buildings Hackable
http://cylance.com/techblog/Googles-Buildings-Hackable.shtml


Google's office in Sydney, Australia Wharf 7 looks something like this.


Google is a building management systemTridiumWe use the Niagara Software Platform 's Niagara Software Platform, and it usually requires an administrator password to manage building facilities such as electricity, gas, water and air conditioning.


Cylance looked at the Niagara device that Google found on the net and discovered that the platform version is a bit older. I obtained a "config.bog" file on the same device using a custom version of exploit. The config.bog file contains not only the system settings but also the names and passwords of all users using the system.

The following image is a fragment of its config.bog file. You can see that the administrator's password is described.


After accessing the file, Cylance decrypts all users' passwords with administrator privileges. Result, I want to do as much as you want.


And to the state that it can be said that it is as good as grasping Google's management system.


It seems that it became possible to access building management functions such as wiring diagram of floor air conditioning, energy meter and alarm.


Here is wiring diagram of air conditioning / water supply on the 3rd floor of the building.


"AfterHoursButton" written with the icon of the cannucis did not know what button it was, he said he was not worried because he was uneasy.


Although root access was also possible, it said that it did not do it.


To GoogleVulnerability reward program(VRP) system, Cylance reported this problem to VRP after testing. Cylance's blog states that Google has addressed it so that it can not immediately connect to the same system. Tridium Niagara is characterized by being able to manage the system from a Web browser, and it is also used in companies, airports, hotels, etc. around the world. There are many companies using similar systems, and Cylance, which is in the middle of the project, has already experienced more than 25,000 such systems. Cylance warns that even if Google could hurt the hacking, Cylance warned that other companies could be vulnerable enough.