Skip to main content

SF Muni public transit system hacked, resulting in free rides

Cyber Attackers Hack Muni's Fare System In San Francisco
This weekend has been very busy for shoppers. (Black Friday, it was in all the papers). And it was particularly busy in downtown San Francisco, home to the famous Union Square and many other high-end retailers. San Francisco Municipal Railway, or Muni as it is known locally, was apparently hacked Saturday. As a result, San Francisco station fare gates were open all day.

SFGate reports everything has since returned to normal, and Muni rep Paul Rose said “At this point there are not any indications of any impacts to customers. We’re doing a full investigation to find out exactly what we are dealing with.” Muni had to end up taping “out of service” notes to ticket machines.

Related Videos

Muni is essential to the day to day functioning of San Francisco, running through the heart of the city and other outlying stops, and a crippling strike taking down the system down would be a disaster. CBS SF Bay Area notes that “Inside sources say the system has been hacked for days.” SFGate reports that fare gates and ticket machines are now working normally after the hacking message appeared in agent computer screens and ticket machines were knocked out.

Train service itself was not affected during the incident. CBS quoted one rider as saying “I think it is terrifying. I really do think if they can start doing this here, we’re not safe anywhere.” Another straphanger wondered if the free fares were just a Black Friday promotional deal. There are other repercussions as well: transit agency workers aren’t sure if they will be paid this week, and Muni internal email was also impacted.

Motherboard states that “It’s also unclear whether charity was hacker’s true goal in breaching the San Francisco Municipal Transit Authority systems, or if the system was shut down in response to a more malicious attack.” It was also noted that this isn’t the first transit system hack. In 2008, a judge prevented a pair of MIT students from giving a presentation at the Def Con hackers conference that showed how to add value to the RFID-based cards used on the Boston T subway.

The Verge included this email from the hacker: “we don’t attention to interview and propagate news ! our software working completely automatically and we don’t have targeted attack to anywhere ! SFMTA network was Very Open and 2000 Server/PC infected by software ! so we are waiting for contact any responsible person in SFMTA but i think they don’t want deal ! so we close this email tomorrow!”

The message that flashed on Muni terminals and machines Saturday said, “You Hacked, ALL Data Encrypted. Contact For Key(cryptom27@yandex.com)ID:681 ,Enter.” So this appears to be a case of ransomware.

Editors' Recommendations

Google Maps expands super-useful feature for mass transit
A subway train in New York City.

Google Maps has announced a significant expansion of a handy feature that lets you see how crowded your train or bus is likely to be when it arrives.

After launching the feature in 200 cities in June 2019, the web giant is this week rolling it out to 10,000 transit agencies in 100 countries. If available, the data will appear when you look up transit directions.

Read more
Massive iPhone security flaw left millions of phones vulnerable to hacks
iPhone Home screen and apps

Over half a billion iPhones are vulnerable to hackers, and iPads are susceptible, too — and Apple is still working to deploy its fix.

The issue — which was discovered by cybersecurity company ZecOps exec Zuk Avraham — lies with Apple’s Mail app, which leaves devices vulnerable to hackers, according to Reuters.

Read more
After latest hack, experts say smart home security systems stink at securing data
Wyze Cam Pan Review

Another day, another smart home camera system security hack, this one affecting the Seattle-based company Wyze. First reported by the Texas-based cybersecurity firm Twelve Security and confirmed by Wyze, the hack is estimated to have affected 2.4 million customers who had their email addresses, the emails of anyone they ever shared camera access with, a list of their cameras, the last time they were on, and much more information exposed. Some customers even had their health data leaked.

“Personally, in my 10 years of [system administration] and cloud engineering, I never encountered a breach of this magnitude,” wrote Dan Ehrlich, founder  Twelve Security, in a post about the Wyze hack.

Read more