No place for a MAC address

And that place is on a coffeemaker:

The important thing here is, that no computers that are infected are connected to the internal network. So they don’t instantly get infected again after reimaging.

Everything is going well, all the computers are re-imaged and the monitoring system is back up and running. I’m about to close this case when one by one they start getting infected again. Which should be impossible, because the PLC’s cannot be infected by this malware, and the monitoring system consists of 4 computers and he re-imaged them all.

So at this point, the operator mentions that he could really use some coffee. So I tell him it’s ok for him to get some coffee while I try to figure out why these computers keep getting reinfected. Only then he tells me, he wasn’t able to get coffee, because all the coffee machines were showing the same ransomware attack message.

So long story short, the coffee machines are supposed to be connected to their own isolated WiFi network, however, the person installing the coffee machine connected the machine to the Internal control room network, and then when he didn’t get internet access remembered to also connect it to the isolated WiFi network. The operator contacted us about his monitoring system not working but forgot to mention the coffee machines were showing the same error.

The external company responsible for managing our coffee machine got an angrily worded letter for getting all those machines infected, and all their clients were without working coffee machines for a couple of days.

Coffee is too important to entrust to a network.

(Via @InternetofShit.)


  1. fillyjonk »

    25 July 2017 · 8:53 pm

    My stovetop teakettle, pretty much indistinguishable from one my Irish great-great-grandma would have used, would never pull that kind of a stunt on me.

    I expect, as the IoS ramps up, to see a booming business in people willing to repair and refurbish the old-style “dumb” appliances that not only won’t sell your information on the internet, they CAN’T.

  2. McG »

    25 July 2017 · 10:23 pm

    The only thing I wanted my Keurig 2.0 to be able to do was keep its clock properly set so I didn’t have to keep resetting it.

    Then I decided since I’m the only one in the house who drinks coffee anymore, and that pretty much only in the winter anyway, it made more sense not to have a top-of-the-line coffeemaker with a reservoir that can brew ten cups without refilling.

    And the down-tech, reservoir-less Keurig I replaced the 2.0 with doesn’t have a clock either.

  3. Barks »

    26 July 2017 · 6:45 am

    Where did this guy get all the unnecessary commas?

  4. CGHill »

    26 July 2017 · 8:05 am

    Forget it, Barks. It’s Reddit.

  5. Lorna »

    27 July 2017 · 8:44 am

    Oh wow! I didn’t even know that coffee machines needed wifi! We still use a kettle here, LOL!

    Raindrops of Sapphire

RSS feed for comments on this post