Redwood City Officials Confront Infrastructure Vulnerabilities After Crosswalk Signal Breach Targeting Tech Billionaires Goes Viral

The city of Redwood, California, is racing to strengthen its cybersecurity measures after their crosswalks were hacked by an outside party to play fake voice messages from tech billionaires Elon Musk and Mark Zuckerberg during the weekend of April 12th. The auto-generated messages were reported at four intersections throughout the city, prompting concerns about public safety for residents.

The issue also spread to neighboring cities, including Palo Alto and Menlo Park. The prank began at the intersection of El Camino and Maple Street, where a resident identified as "Yasdnilas" submitted a request (service request to the city) on April 12th. Over the next two days, similar incidents were discovered at a total of four locations throughout the City of Redwood.

The City confirmed all unauthorized messages were disabled by Sunday, April 13th. "We sincerely apologize for any confusion or concern this may have caused," Deputy City Manager Jennifer Yamaguma wrote in a statement on April 15th. "The unauthorized messages have since been disabled, and the normal messaging has been restored." However, the process of responding to the incident prompted deeper investigation within the City Council over infrastructure security, contractor responsibilities, and maintenance updates on equipment.

The Daily Dot obtained recorded communications from the City of Redwood documenting the process of investigating and responding to the hacking incident through the following week, beginning April 14th. HACKED CROSSWALK SIGNALS USE SPOOFED VOICES OF ZUCKERBERG, MUSK

Several crosswalk buttons in Redwood City, Palo Alto, and Menlo Park, appear to have been hacked, playing prank audio messages that imitate the voices of tech billionaires Elon Musk and Mark Zuckerberg.

In addition, the Daily Dot also secured records from the City of Palo Alto, offering additional insight into how neighboring cities handled their responses to the general public. "It was later determined that 12 downtown intersections were similarly malfunctioning, and that tampering may have occurred on Friday [April 11th]," Chief Communications Officer Meghan Horrigan-Taylor wrote in response to a media inquiry from KTVU FOX-2.

The extent of disruption in Palo Alto appeared to be greater than in Redwood, which reported fewer intersections. City Manager Melissa Stevenson-Diaz pushed for clarity on procedural responsibility on April 14th, asking "When installed, is it our staff who are to change the password, or should that have been done by contractors working for us?"

Tanisha Warner, the city's News Director of Engineering and Transportation, noted that Redwood City has not had in-house signal technicians for several years, and relies entirely on CalWest for signal maintenance. "I remain concerned that we develop some kind of standard...ensuring that passwords are updated from the manufacturer default, either by us or whoever is responsible for installation and/or ongoing maintenance," Stevenson-Diaz wrote, explaining the need for a long-term solution and potential procedural changes.

The incident also attracted federal interest. On April 14, Warner received a voicemail from the Federal Highway Administration (FHWA) and confirmed that FHWA official Edward Fok followed up with an email. Yamaguma, having recently completed cybersecurity training, expressed caution: "I'd still want to confirm it's a legitimate staffer before sharing any additional information."

Media interest was rapid. NBC and other local outlets requested statements. Redwood City Police Captain Ashley Osbourne confirmed that Police Chief Bell had forwarded all press inquiries to City Hall, to which Yamaguma responded, "Keep them coming my way... we have a statement we are sharing with all outlets."

The City of Redwood was accommodating with media requests, promptly providing public statements and recommendations. "We also want to remind the public that tampering with City infrastructure, including crosswalk signals, is unlawful and poses a safety risk," Yamaguma told reporters.

A Broader Review of Cybersecurity Protocols

As of April 14, there were no reports of further breaches or who was behind them. However, the incident has sparked a broader review of cybersecurity protocols, staff accountability, and vendor contract requirements. "Our goal," said Stevenson-Diaz, "is to make sure something like this doesn't happen again—while making it clear who is responsible when it does."

A Call for Caution

City staff are now in the process of confirming and updating credentials on all crosswalk signals across Redwood City. "It will take a while to go out to each and every signal and confirm new password, etc.," Lee wrote, recommending caution in how future public statements are worded to account for any missed vulnerabilities.

As the internet continues to evolve, cybersecurity threats become increasingly common. The Daily Dot's web_crawlr newsletter is here to break it down for you in one daily email. Sign up here to get the best (and worst) of the internet straight into your inbox.