Commuters Get Free Rides After Hackers Target San Francisco Public Transport

By Hudson Hongo on at

A cyber attack oddly gave San Franciscans something to be thankful for this weekend when officials responded to a hack of the city’s transport system by giving away free rides.

Friday night, the message “You Hacked, ALL Data Encrypted” began appearing on Muni station computer screens across San Francisco. Unable to charge customers for fare, transport authorities opened fare gates on Saturday to “minimise customer impact.”

According to The Register, the attack itself was a ransomware scheme asking for 100 bitcoins (about £58,340) to unlock more than 2,000 compromised transport system computers:

These systems appear to include office admin desktops, CAD workstations, email and print servers, employee laptops, payroll systems, SQL databases, lost and found property terminals, and station kiosk PCs. It appears the malware was able to reach the agency’s domain controller and compromise network-attached Windows systems. There are roughly 8,500 PCs, Macs and other boxes on the agency’s network.

After the vulnerable computers were infected and their storage scrambled, they were rebooted by malware and, rather than start their operating system, they instead displayed the message: “You Hacked, ALL Data Encrypted, Contact For Key (cryptom27@yandex.com) ID:601.”

Citing an unnamed transport authority source, KPIX-TV reports that the computer system had actually been hacked days beforehand, but officials declined to provide additional information on the attack.

“Because this is an ongoing investigation it would not be appropriate to provide additional details at this point,” a Muni spokesperson told the station. [KPIX-TV]