:

CROSSWALK HACK EXPOSES SECURITY GAPS IN CITY SYSTEMS

SECURITY DESK1 MIN READ
MON, APR 13, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

A hacker hijacked public crosswalk announcements in April to broadcast impersonations of Mark Zuckerberg and Elon Musk, revealing how unprepared local authorities are for infrastructure attacks.

The incident, documented in records obtained by WIRED, demonstrated a straightforward vulnerability in connected city systems that officials failed to anticipate or secure. The hacker accessed crosswalk audio systems—infrastructure designed to assist pedestrians—and used them to broadcast celebrity impersonations. The attack was unsophisticated but effective, exposing the lack of basic security protocols protecting public infrastructure. Local authorities had no prepared response and struggled to contain the breach once discovered. The incident highlights a critical gap: cities are deploying connected systems faster than they implement safeguards. As municipalities increasingly adopt smart infrastructure for traffic management and public safety, security remains an afterthought. The crosswalk hack serves as a warning that even low-tech attack vectors can compromise public systems when basic access controls are absent. Experts emphasize that protecting connected infrastructure requires baseline security measures—authentication, monitoring, and regular audits—currently missing from many municipal deployments.

■ SOURCES

Wired

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

5H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

5H AGOSecurity Desk

Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.

8H AGOAI Desk

A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.

10H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.