Residents in Denver were subjected to explicit and hateful messages while crossing city streets over the weekend, after hackers manipulated audio systems at pedestrian signals to broadcast vile remarks about the president. The incidents occurred at two crosswalks on East Colfax Avenue, sparking widespread controversy and highlighting significant cybersecurity vulnerabilities.
Details of the Hacking Incident
According to Nancy Kuhn, Communications Director for the Denver Department of Transportation and Infrastructure, the hacked messages included phrases such as, 'The walk signal is on, f*** Trump,' and 'The walk signal is on, Trump murders children.' The audio blared from crosswalks at North Pearl Street and North Washington Street, catching pedestrians off guard and quickly drawing public attention.
How the Hackers Gained Access
Kuhn explained that the hackers easily accessed the pedestrian signals because the devices were recently installed and still in their default mode. 'The devices were still bagged and with their factory settings that included a default password that we now have learned is easy to find online,' she told the Denver Post. This lapse in security allowed the perpetrators to exploit weak credentials, a common issue in such infrastructure.
Daniel Pittman, a cybersecurity expert at Metropolitan State University of Denver, noted that similar incidents are not uncommon. 'This happens a lot,' he told CBS News. 'When you look at construction working signs, the ones who put the messages on, I'm sure you've seen internet memes about people that have put their own messages on them and stuff like that. And it always comes down to weak credentials, default credentials, and they're publicly available.'
Response and Remedial Actions
In response to the hacking, officials took swift action to secure the systems. The crosswalk sign at Colfax Avenue and Pearl Street was shut down on Friday night, and the one on Washington Street was disconnected. Kuhn assured the public that passwords have since been changed and that they do not expect a recurrence of such an event. 'The pedestrian signals have been fixed and their passwords are now more secure,' she stated, emphasizing the department's commitment to preventing future breaches.
Public Reaction and Social Media Fallout
Footage of the hacked crosswalks quickly went viral on social media, eliciting a mix of outrage and applause. Many residents expressed frustration over the misuse of safety infrastructure. One disgruntled user commented, 'I live here in Denver. Find another way to spread whatever message you have, other than by hacking a safety measure that helps people not get hit by cars. I don't care who you like or don't like. Grow up and do better. Losers.' Another simply added, 'Do better, Denver.'
However, not all reactions were negative. Some individuals found humor or support in the messages, with one person writing, 'Hack them all with this! It’s a service to humanity.' Another pleaded, 'Please tell me they didn’t change it back! I wanna hear it in person!' A third noted, 'What an amazing use of free will and IT skills,' highlighting the divisive nature of the incident.
Broader Implications for Cybersecurity
This event underscores ongoing concerns about the security of public infrastructure, particularly in urban settings where technology is increasingly integrated. The ease with which hackers accessed the signals using default passwords raises questions about the adequacy of current security protocols for municipal devices. Experts like Pittman warn that without stronger measures, such breaches could become more frequent, potentially compromising not just audio systems but other critical functions.
The Denver Department of Transportation and Infrastructure has been contacted for further comment, but as of now, no additional details have been released. The incident serves as a stark reminder of the need for robust cybersecurity practices in public spaces, ensuring that safety features remain protected from malicious interference.
