Toronto, Ontario — Cybersecurity research performed by Nozomi Networks’ Labs warns that hand tools with smart features can be vulnerable to cyber attacks.
Specifically, Nozomi Networks’ Labs found vulnerabilities in a Bosch Rexroth smart pneumatic torque wrench that the company says is commonly used on vehicle production lines.
The wrench’s smart functions allow it to send activity data to a central server for logging, as well as to receive remote reprogramming for different torque settings.
However, Nozomi Networks’ Labs said that the software is also “an exposed management web application” and this creates security problems in the form of vulnerability to ransomware attacks.
Notably, as a result of the wrench’s smart features, it is possible for outside entities to send signals to the tool, or even install new code, changing the tool’s function or hijacking it entirely.
In a recent test, the company found that it was able to use signals to disable the tool and change the smart wrench’s screen to demand payments.
The company also noted that automating an attack of this kind would be easy, allowing a perpetrator to take down an entire production line and then try and ransom control back to the user.
The Bosch tool in question will however not remain vulnerable for long, as the company is reportedly rolling out a security update in the near future to prevent attacks.
