it seems most of these crosswalks can be configured via app from https://polara.com/ . So either the authentication was leaked or got physically flashed/hacked?
> SIMPLE WIRELESS PROGRAMMING
The iNX is easily programmed using our industry-leading
Field Service App, available for iOS® & Android® – no
expensive software or proprietary devices required! The app allows technicians to configure system settings and
sounds, as well as access actionable data on button counts, flashing cycles, and more.
They said "The app allows technicians to configure system settings and sounds"; They never said the app _doesn't_ allow _non-technicians_ to do the same. What's the big deal?
Someone is either guessing the passwords, which may well be the same all over the city given the number of these devices out there, or cities could just be using the default password of 1234. Yes, really:
> PASSWORD ISSUES: The iCCU can be connected to thru Wi-Fi. The buttons can be connected to thru Bluetooth.
A. Once Wi-Fi is turned on at the iCCU, the Wi-Fi password is DEFAULT1 (ALL CAPS).
B. Following power up, each button will say “change password” every 30 seconds, until the default password is changed. There is one shared password for logging into an iCCU and all PBS connected to it. The factory default password is 1234. Using a Field Service app, use 1234 to log into the iCCU or any PBS the first time, and change the password. This changes the password for all PBS and the iCCU. See Section 5.2 in the Manual for details.
C. If the password is unknown, a Password Reset requires a call to Polara Tech Support.
it seems most of these crosswalks can be configured via app from https://polara.com/ . So either the authentication was leaked or got physically flashed/hacked?