The FCC issued the Notice of Proposed Rulemaking FCC-22-82 last week in an effort to shore up security vulnerabilities discussed recently. The vulnerabilities include the usual easy-to-guess passwords, lack of EAS device software updates, and so on. The FCC wants to require broadcasters and cable operators to report cyber threats to their EAS equipment within 72 hours and file a cybersecurity risk management plan with the FCC for their EAS system. The commission also wants broadcasters to download and install security patches for their EAS gear.
All posts by Gary Stigall
Nautel Online SBE Chapter Meeting Nov. 8
With hundreds of transmitter site visits under his belt, Jeff Welton of Nautel has seen a few things and will attempt to share some of the challenges he encounters most often in this session. The content will cover grounding and lightning protection, safety, IT security, and whatever other tips come to mind. There should be a bit of something for everyone in this fast-paced presentation. We’ll look at the problems and situations we encounter and discuss ways to resolve or work around them.
Join us Tuesday, November 8, at 11:30 AM PT for this Zoom online meeting organized by Chapter 47, Los Angeles.
Continue reading Nautel Online SBE Chapter Meeting Nov. 8Are You One of Our Next Leaders?
Tony McDaid as Chairman and Mike Curran as Vice-Chairman took over leadership of Chapter 36 in December 2017. Tony navigated us through the COVID pandemic, setting up online meetings in cooperation with other chapters to attract interesting, timely presenters. Many thanks for their volunteer help.
The current line-up of SBE Chapter 36 officers has been in office since December 2017 and it’s time to pass the torch to a new leadership team.
Continue reading Are You One of Our Next Leaders?Community Radio NCE Application Dismissed
The FCC dismissed on 9/22/2022 the Non-commercial Educational (NCE) FM station application by Community Public Radio, Inc. for a station on Parsa Peak in Lakeside with the city of license of “La Jolla” on 91.7 (La Jolla is a community within the City of San Diego). The facility would have been co-channel with XHGLX-FM Tijuana (which is not listed in FCC databases, but the FCC has reserved as a Mexican allotment for Tijuana). The FCC also named an allotment for adjacent channel 91.9 MHz in Rosarito, BCN, Mexico, and third-adjacent XETRA-FM 91.1 Tijuana as reasons for the dismissal.
EAS IPAWS Security Advisory
[FROM FEMA Advisory published 8/1/2022]
We recently became aware of certain vulnerabilities in EAS encoder/decoder devices that, if not updated to most recent software versions, could allow an actor to issue EAS alerts over the host infrastructure (TV, radio, cable network).
This exploit was successfully demonstrated by Ken Pyle, a security researcher at CYBIR.com, and may be presented as a proof of concept at the upcoming DEFCON 2022 conference in Las Vegas, August 11-14.
In short, the vulnerability is public knowledge and will be demonstrated to a large audience in the coming weeks.
FEMA strongly encourages EAS participants to ensure that:
- EAS devices and supporting systems are up to date with the most recent software versions and security patches;
- EAS devices are protected by a firewall;
- EAS devices and supporting systems are monitored and audit logs are regularly reviewed looking for unauthorized access.