https://urgentcomm.com/wp-content/themes/ucm_child/assets/images/logo/footer-new-logo.png
  • Home
  • News
  • Multimedia
    • Back
    • Multimedia
    • Video
    • Podcasts
    • Galleries
  • Commentary
    • Back
    • Commentary
    • Urgent Matters
    • View From The Top
    • All Things IWCE
    • Legal Matters
  • Resources
    • Back
    • Resources
    • Webinars
    • White Papers
    • Reprints & Reuse
  • IWCE
    • Back
    • IWCE
    • Conference
    • Special Events
    • Exhibitor Listings
    • Premier Partners
    • Floor Plan
    • Exhibiting Information
    • Register for IWCE
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Terms of Service
    • Privacy Statement
    • Cookies Policy
  • Related Sites
    • Back
    • American City & County
    • IWCE
    • Light Reading
    • IOT World Today
    • Mission Critical Technologies
    • Microwave/RF
    • T&D World
    • TU-Auto
  • In the field
    • Back
    • In the field
    • Broadband Push-to-X
    • Internet of Things
    • Project 25
    • Public-Safety Broadband/FirstNet
    • Virtual/Augmented Reality
    • Land Mobile Radio
    • Long Term Evolution (LTE)
    • Applications
    • Drones/Robots
    • IoT/Smart X
    • Software
    • Subscriber Devices
    • Video
  • Call Center/Command
    • Back
    • Call Center/Command
    • Artificial Intelligence
    • NG911
    • Alerting Systems
    • Analytics
    • Dispatch/Call-taking
    • Incident Command/Situational Awareness
    • Tracking, Monitoring & Control
  • Network Tech
    • Back
    • Network Tech
    • Interoperability
    • LMR 100
    • LMR 200
    • Backhaul
    • Deployables
    • Power
    • Tower & Site
    • Wireless Networks
    • Coverage/Interference
    • Security
    • System Design
    • System Installation
    • System Operation
    • Test & Measurement
  • Operations
    • Back
    • Operations
    • Critical Infrastructure
    • Enterprise
    • Federal Government/Military
    • Public Safety
    • State & Local Government
    • Training
  • Regulations
    • Back
    • Regulations
    • Narrowbanding
    • T-Band
    • Rebanding
    • TV White Spaces
    • None
    • Funding
    • Policy
    • Regional Coordination
    • Standards
  • Organizations
    • Back
    • Organizations
    • AASHTO
    • APCO
    • DHS
    • DMR Association
    • ETA
    • EWA
    • FCC
    • IWCE
    • NASEMSO
    • NATE
    • NXDN Forum
    • NENA
    • NIST/PSCR
    • NPSTC
    • NTIA/FirstNet
    • P25 TIG
    • TETRA + CCA
    • UTC
Urgent Communications
  • NEWSLETTER
  • Home
  • News
  • Multimedia
    • Back
    • Video
    • Podcasts
    • Omdia Crit Comms Circle Podcast
    • Galleries
    • IWCE’s Video Showcase
  • Commentary
    • Back
    • All Things IWCE
    • Urgent Matters
    • View From The Top
    • Legal Matters
  • Resources
    • Back
    • Webinars
    • White Papers
    • Reprints & Reuse
    • UC eZines
    • Sponsored content
  • IWCE
    • Back
    • Conference
    • Why Attend
    • Exhibitor Listing
    • Floor Plan
    • Exhibiting Information
    • Join the Event Mailing List
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Terms of Service
    • Privacy Statement
    • Cookies Policy
  • Related Sites
    • Back
    • American City & County
    • IWCE
    • Light Reading
    • IOT World Today
    • TU-Auto
  • newsletter
  • In the field
    • Back
    • Internet of Things
    • Broadband Push-to-X
    • Project 25
    • Public-Safety Broadband/FirstNet
    • Virtual/Augmented Reality
    • Land Mobile Radio
    • Long Term Evolution (LTE)
    • Applications
    • Drones/Robots
    • IoT/Smart X
    • Software
    • Subscriber Devices
    • Video
  • Call Center/Command
    • Back
    • Artificial Intelligence
    • NG911
    • Alerting Systems
    • Analytics
    • Dispatch/Call-taking
    • Incident Command/Situational Awareness
    • Tracking, Monitoring & Control
  • Network Tech
    • Back
    • Cybersecurity
    • Interoperability
    • LMR 100
    • LMR 200
    • Backhaul
    • Deployables
    • Power
    • Tower & Site
    • Wireless Networks
    • Coverage/Interference
    • Security
    • System Design
    • System Installation
    • System Operation
    • Test & Measurement
  • Operations
    • Back
    • Critical Infrastructure
    • Enterprise
    • Federal Government/Military
    • Public Safety
    • State & Local Government
    • Training
  • Regulations
    • Back
    • Narrowbanding
    • T-Band
    • Rebanding
    • TV White Spaces
    • None
    • Funding
    • Policy
    • Regional Coordination
    • Standards
  • Organizations
    • Back
    • AASHTO
    • APCO
    • DHS
    • DMR Association
    • ETA
    • EWA
    • FCC
    • IWCE
    • NASEMSO
    • NATE
    • NXDN Forum
    • NENA
    • NIST/PSCR
    • NPSTC
    • NTIA/FirstNet
    • P25 TIG
    • TETRA + CCA
    • UTC
acc.com

The attack and heist

The attack and heist

  • Written by Urgent Communications Administrator
  • 19th September 2018

Unfortunately for the Sheriff’s Office and the surrounding agencies, there were no smoking guns that indicated their systems had been compromised. Several months had passed since the spear-phishing attacks, so they had been written off as an unsuccessful attempt. On the morning of the heist, the GIS database was updated with a new GIS boundary that surrounded the Diamond Exchange and several city blocks. It was assigned to the default agency that the vendor had created for the test. Thirty minutes before the heist was to take place, the agency zombies were instructed to create phony calls for emergency services all over the county. Hundreds of car crashes, burglar alarms and fire alarms filled up the computer-aided dispatch (CAD) screens.

Emergency services strategically were being led away from the Diamond Exchange in preparation for the heist. Shortly after the CAD queues in the 911 center were filled with spurious calls, the second wave of zombies was called into action. Thousands of voice calls were generated to the Sheriff’s Office and the 911 center. This distributed denial of service (DDoS) attack flooded the 911 system and filled all of the available caller queues, even the overflow queues.

Though the owners of the Diamond Exchange were shocked to see the robbers destroying the display cases and taking diamonds, they were confident that law enforcement soon would arrive. Every crash of the display case would sound an additional alarm that could be heard even outside the store. Witnesses from neighboring stores were calling 911, only to find the lines either busy or silent. Even if the callers were lucky enough to get past the calling zombies, their calls would have been routed to the default agency—where no one would answer.

The robbers loaded diamonds into their bags for more than 10 minutes before fleeing the area. Later, several dispatch calls were discovered that automatically had been generated with the crash of each display case, or the pressing of the panic button. Unfortunately, all were closed in the default agency’s history because of the prior work done by the attackers. And not a single telephone or cellular phone caller in the neighborhood was able to get through to 911 for hours.

Tags:

Related Content

  • Cars, Medicine, Electric Grids: Future hackers will hit much more than networks in an IT/OT integrated world
  • Securing an open-source OS for IoT
  • The attack and heist
    Newscan: Once, superpower summits were about nukes. Now, it’s cyberweapons.
  • Unfinished Business: Why NFPA and IBC fire codes need to kill the fire phone

Commentary


LTE and liability: Why the fire service must move forward with digital incident command

  • 2
6th May 2022

Partnership and collaboration must be the foundation for emergency communications

18th April 2022

FirstNet success means no hypothetical ‘shots’ need to be fired, Swenson says

22nd February 2022
view all

Events


UC Ezines


IWCE 2019 Wrap Up

13th May 2019
view all

Twitter


UrgentComm

Chinese APT group likely using ransomware attacks as cover for IP theft dlvr.it/SSmJNm

24th June 2022
UrgentComm

AT&T, Verizon, T-Mobile tout Z-axis support for 911 dlvr.it/SSkGxK

23rd June 2022
UrgentComm

California grants first permit to test AVs using only Lidar sensing dlvr.it/SSkG7x

23rd June 2022
UrgentComm

Buying smart solutions: Technology is now part of (almost) every government purchase dlvr.it/SSk77q

23rd June 2022
UrgentComm

France preparing to launch public-safety broadband network, official says dlvr.it/SSh12p

23rd June 2022
UrgentComm

Newscan: Law-enforcement radios failed during Uvalde school mass shooting, Texas official says dlvr.it/SSf9vM

22nd June 2022
UrgentComm

AT&T, Verizon agree to another year of C-band mitigation around airports dlvr.it/SSXHRD

20th June 2022
UrgentComm

Can we make a global agreement to halt attacks on our energy infrastructure? dlvr.it/SSWcGn

20th June 2022

Newsletter

Sign up for UrgentComm’s newsletters to receive regular news and information updates about Communications and Technology.

Expert Commentary

Learn from experts about the latest technology in automation, machine-learning, big data and cybersecurity.

Business Media

Find the latest videos and media from the market leaders.

Media Kit and Advertising

Want to reach our digital and print audiences? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • American City & County
  • IWCE
  • Light Reading
  • IOT World Today
  • Mission Critical Technologies
  • Microwave/RF
  • T&D World
  • TU-Auto

WORKING WITH US

  • About Us
  • Contact Us
  • Events
  • Careers

FOLLOW Urgent Comms ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X