.

Insurgents Hack U.S. Drones with $26 Software

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Dec 17, 2009 4:30 pm

Insurgents Hack U.S. Drones with $26 Software

Article in the Wall Street Journal by SIOBHAN GORMAN, YOCHI J. DREAZEN and AUGUST COLE.


WASHINGTON -- Militants in Iraq have used $26 off-the-shelf software to intercept live video feeds from U.S. Predator drones, potentially providing them with information they need to evade or monitor U.S. military operations.

Senior defense and intelligence officials said Iranian-backed insurgents intercepted the video feeds by taking advantage of an unprotected communications link in some of the remotely flown planes' systems. Shiite fighters in Iraq used software programs such as SkyGrabber -- available for as little as $25.95 on the Internet -- to regularly capture drone video feeds, according to a person familiar with reports on the matter.

U.S. officials say there is no evidence that militants were able to take control of the drones or otherwise interfere with their flights. Still, the intercepts could give America's enemies battlefield advantages by removing the element of surprise from certain missions and making it easier for insurgents to determine which roads and buildings are under U.S. surveillance.

The drone intercepts mark the emergence of a shadow cyber war within the U.S.-led conflicts overseas. They also point to a potentially serious vulnerability in Washington's growing network of unmanned drones, which have become the American weapon of choice in both Afghanistan and Pakistan.

The Obama administration has come to rely heavily on the unmanned drones because they allow the U.S. to safely monitor and stalk insurgent targets in areas where sending American troops would be either politically untenable or too risky.

The stolen video feeds also indicate that U.S. adversaries continue to find simple ways of counteracting sophisticated American military technologies.

U.S. military personnel in Iraq discovered the problem late last year when they apprehended a Shiite militant whose laptop contained files of intercepted drone video feeds. In July, the U.S. military found pirated drone video feeds on other militant laptops, leading some officials to conclude that militant groups trained and funded by Iran were regularly intercepting feeds.

In the summer 2009 incident, the military found "days and days and hours and hours of proof" that the feeds were being intercepted and shared with multiple extremist groups, the person said. "It is part of their kit now."

A senior defense official said that James Clapper, the Pentagon's intelligence chief, assessed the Iraq intercepts at the direction of Defense Secretary Robert Gates and concluded they represented a shortcoming to the security of the drone network.

"There did appear to be a vulnerability," the defense official said. "There's been no harm done to troops or missions compromised as a result of it, but there's an issue that we can take care of and we're doing so."

Senior military and intelligence officials said the U.S. was working to encrypt all of its drone video feeds from Iraq, Afghanistan and Pakistan, but said it wasn't yet clear if the problem had been completely resolved.

Some of the most detailed evidence of intercepted feeds has been discovered in Iraq, but adversaries have also intercepted drone video feeds in Afghanistan, according to people briefed on the matter. These intercept techniques could be employed in other locations where the U.S. is using pilotless planes, such as Pakistan, Yemen and Somalia, they said.



For entire story:
http://online.wsj.com/article/SB126102247889095011.html

Don
CISSP, MCSE, CSTA, Security+ SME
<<

Grendel

User avatar

Full Member
Full Member

Posts: 246

Joined: Thu Aug 28, 2008 8:48 am

Location: Colorado Springs, CO

Post Thu Dec 17, 2009 4:41 pm

Re: Insurgents Hack U.S. Drones with $26 Software

That should be interesting...

1) strongly encrypt the data stream
2) increase latency, causing steering problems
3) fly drones go "BOOM" into stationary objects

or

1) weakly encrypt the data stream
2) minimize latency
3) wait for insurgents to break weak encryption
4) rinse, repeat.

Only other alternative I can think of in the 45 seconds I'm willing to spend on this thought process is to have daily changing weak encryption.
- Thomas Wilhelm, MSCS MSM
ISSMP CISSP SCSECA SCNA IEM

Web Site:
  • http://HackingDojo.com
Author:
  • Professional Penetration Testing
  • Ninja Hacking
  • Penetration Tester's Open Source Toolkit
  • Metasploit Toolkit for Penetration Testing
  • Netcat Power Tools
<<

3PIL0GU3

Newbie
Newbie

Posts: 38

Joined: Tue Aug 18, 2009 7:48 am

Post Thu Dec 17, 2009 8:23 pm

Re: Insurgents Hack U.S. Drones with $26 Software

I would have thought the US millitary would have uber secure technology byn now

You post proved me wrong :(
----------------------------
CEH
<<

Kev

Sr. Member
Sr. Member

Posts: 428

Joined: Sat Sep 29, 2007 12:26 pm

Post Sat Dec 19, 2009 12:36 pm

Re: Insurgents Hack U.S. Drones with $26 Software

I thought one of the fundamental rules in all warfare is to "know your enemy". Seems like we sometimes underestimate the cunning of people living in 3rd or 4th world countries. Thats a big mistake not only for the military but anyone involved in security.
<<

jimbob

Post Tue Dec 22, 2009 5:07 am

Re: Insurgents Hack U.S. Drones with $26 Software

Another reminder about the power of passive reconnaissance. Done well your enemy does not know they are being snooped upon and the barrier to entry is often very low.

Jimbob
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Tue Dec 22, 2009 11:33 pm

Re: Insurgents Hack U.S. Drones with $26 Software

Kev wrote:Seems like we sometimes underestimate the cunning of people living in 3rd or 4th world countries.


Sadly, not even a case of cunning, just buying a bit of software.
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Thu Dec 24, 2009 1:23 pm

Re: Insurgents Hack U.S. Drones with $26 Software

I liked Bruce Schneier's take on this at Wired.

He says the commands to the things have always been encrypted, it's the video they have to share with multiple people that's not.
OSWP, Sec+
<<

Ash Chole

User avatar

Newbie
Newbie

Posts: 21

Joined: Sun Nov 01, 2009 9:56 pm

Post Wed Dec 30, 2009 8:43 pm

Re: Insurgents Hack U.S. Drones with $26 Software

A lot of presumptions were made in the responses. The information was capture on the down link. The connection to the drone has always been encrypted as to not allow anyone to gain control of the drone. The video stream coming from the drone however has been known to be unsecure since the 90's. It was thought that it would be more hassle than it is worth to share keys with ALL of the people who need access to the stream.

That said it is not the video stream that is captured that is that big of a deal. It is that they were able to capture it. To the insurgents this is a big win to simply be able to say that they tapped into a MULTI MILLION dollar military system by the big bad all powerful U.S. with a $26 russian napster program.
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Wed Dec 30, 2009 10:23 pm

Re: Insurgents Hack U.S. Drones with $26 Software

Ash Chole wrote:It was thought that it would be more hassle than it is worth to share keys with ALL of the people who need access to the stream.


Many security issues like this are actually people problems. The same "security is too hard" attitude has been responsible for many large breaches, TJX being a particularly good example.

Return to Cyber Warfare

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software