Slashdot Mirror

← Back to Stories (view on slashdot.org)

Predator Drone 'Virus' Could Be Military's Own Monitoring

Posted by timothy on from the anything's-possible dept.

jjp9999 writes "The virus that hit Predator and Reaper UAVs could be an internal monitoring system employed by the military. According to security researcher Miles Fidelman, there are vendors that sell security monitoring packages to the Defense Department which are 'essentially rootkits that do, among other things, key logging.' The virus is a keylogger that was found at pilot stations, and could be keeping tabs on keystrokes used by pilots to control the UAVs, found Wired's Danger Room blog. Fidelman adds, 'I kind of wonder if the virus that folks are fighting is something that some other part of DoD deployed intentionally.'"

24 of 99 comments (clear)

  1. Re:Yeah, um, they MEANT to do that... by Daniel+Dvorkin · · Score: 3, Interesting

    If they meant to do it, it's still incompetence, since they apparently just FORGOT TO MENTION it to the people whose job it is to detect actual outside attacks.

    To anyone who's spent any time dealing with military computer security, unfortunately, this really isn't a surprise.

    --
    The correlation between ignorance of statistics and using "correlation is not causation" as an argument is close to 1.
  2. Re:macro making application by mwvdlee · · Score: 2

    Why install a rootkit to log keystrokes when you have full control over the application whose keystrokes you want to log?

    --
    Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
  3. Re:Yeah, um, they MEANT to do that... by Anonymous Coward · · Score: 3, Insightful

    To anyone who's spent any time dealing with military computer security, unfortunately, this really isn't a surprise.

    To anyone who's spent any time dealing with computers, unfortunately, this really isn't a surprise.

  4. Friendly fire by Arancaytar · · Score: 2

    Digital warfare style.

  5. What did one government agency say to the other? by Joshua+Fan · · Score: 2

    "Didn't you get the memo?"

  6. Re:Plausible Deniability to Assassinate People by Anonymous Coward · · Score: 2, Insightful

    Or they could just do what they've been doing all along and label anyone on the wrong end of their detached and indiscriminate bombings as "enemy combatants." It works well enough at home and I sincerely doubt that the people living in fear of drone strikes respect appreciate their presence to begin with. "It wasn't me that upset the bear I put in your house, it was those guys over there!"

  7. sony by cheeks5965 · · Score: 3, Funny

    must be a sony drone. oooh burrrn on sony!

    --
    -- Flame me and I will happily flame you back. Bring it!
  8. Left Hand meet Right Hand by RotateLeftByte · · Score: 2

    Sorry, can't do that. It is classified.

    --
    I'd rather be riding my '63 Triumph T120.
  9. Whitewash by AlienSexist · · Score: 2

    No no it's not a virus. Its... unannounced monitoring services. Double plus good.

  10. Stuxnet was really Iranian by AntiBasic · · Score: 3, Insightful

    The centrifuges were designed to act that way.

  11. Re:macro making application by maxwell+demon · · Score: 2

    Why install a rootkit to log keystrokes when you have full control over the application whose keystrokes you want to log?

    Maybe the code of the main application is such a mess that you don't want to touch it if you don't need to.

    --
    The Tao of math: The numbers you can count are not the real numbers.
  12. Re:Who cares? by maxwell+demon · · Score: 5, Insightful

    Haven't killing machines been guilt free since the invention of the bow and arrow? Not having to look your enemy in the eye makes things a lot easier.

    The machines always have been guilt-free. It was always the humans who were guilty.

    --
    The Tao of math: The numbers you can count are not the real numbers.
  13. Re:Well I fucking hope so by AlienSexist · · Score: 2

    Reminds me of one of the de-motivational posters from Despair, Inc entitled CONSULTING "If you aren't part of the solution there is great money to be made in prolonging the problem"

  14. Simple Test by martin-boundary · · Score: 2

    'I kind of wonder if the virus that folks are fighting is something that some other part of DoD deployed intentionally.'

    Luckily, there's a simple test for that. Does the virus bring up the following dialog box?

    [Virus Message]
    This is not a drill.
    [OK] [Cancel]

    If so, then it's definitely a DoD virus.

  15. Security Researcher? What a joke! by Anonymous Coward · · Score: 2, Insightful

    He's a security researcher and so are the Beagle boys. The guy is a well known crank with a rich fantasy life. Slashdot just keeps getting worse.

  16. Re:Who cares? by ozmanjusri · · Score: 3, Insightful

    I have no issues what so ever eliminating hate filled hypocritical pustules

    When do you plan to set drones loose on Washington?

    --
    "I've got more toys than Teruhisa Kitahara."
  17. Re:Who cares? by Frosty+Piss · · Score: 4, Funny

    When do you plan to set drones loose on Washington?

    Well, they found my key logger, so that plan is on the back burner for the time being...

    --
    If you want news from today, you have to come back tomorrow.
  18. Re:Who cares? by Sulphur · · Score: 4, Funny

    I have no issues what so ever eliminating hate filled hypocritical pustules

    When do you plan to set drones loose on Washington?

    That is the other one, the creditor drone.

  19. Complete speculation by evilviper · · Score: 4, Insightful

    The whole story can be summarized with the following quote:

    Miles Fidelman: "I kind of wonder if..."

    That's about it. Let's have some more fun.

    Predator Drone 'Virus' Could Have Been Planted By Dick Cheney.

    Predator Drone 'Virus' Could Be Product of Iran Intelligence Agency.

    Predator Drone 'Virus' Could Be Designed to Target Nude Beaches.

    etc.

    --
    Slashdot gets worse every day... Pipedot: News for nerds, without the corporate slant
  20. Re:Plausible Deniability to Assassinate People by LibRT · · Score: 3, Funny

    I would think that if you have people whose job it is to push keys, the results of those key pushes being missiles firing and possibly killing other humans, one would insist on logging those key strokes:

    Officer: "The drone you're operating just launched a missile into a school yard and killed 30 children! What did you do?"

    Drone operator: "I dunno. I was pushing some keys and, well, it just kinda happened."

    Officer: "Which keys did you push?"

    Drone operator: "I'm not sure. I was kinda distracted eating a donut. You know how it is when you're eating a donut: you really want to focus in on it."

    Officer: "Hmmm. OK. Back to work. Got any more of those donuts?"

  21. Wow... why are they using ...oh yeah, cost... by ka9dgx · · Score: 2, Informative

    Argh... we're building weapons systems based on windows or mac or linux? What are these people, nuts?

    If there was ever a place where capability based security should be used, this is it. An application that has the ability to literally kill people should not be run in an environment which defaults to permissive... this means that ANY application on that system could potentially kill someone.

    With the exception of a few wise souls here and there, nobody else seems to get the idea that this kind of thing can be stopped, dead, in its tracks. (Pun intended)

    Capability based security offers a path forward to computers that trust nothing by default... the exact opposite of what we have now. They don't have to be unusable, nor layered with ineffective anti-spyware, anti-malware, etc...

    Just stop trusting applications, and specify what they can do, as a maximum extent, before you execute them. This limits the damage a rogue (or just confused) application can incur before it's even run.

    Now... I've obviously made some typos and a few things could be made clearer in the above... unfortunately /. doesn't allow editing or clarification of a post after it's written... nor does it offer any voting other than a popularity contest... so let the inefficient commenting begin.

    1. Re:Wow... why are they using ...oh yeah, cost... by DerekLyons · · Score: 4, Interesting

      Argh... we're building weapons systems based on windows or mac or linux?

      I'd be willing to bet that since the drones started out as non combat systems, doing was acceptable in the beginning - and they've never gone back and redone the system as the drones have gradually morphed into combat systems and then into weapons systems. Or, they've justified not doing so on the basis that to do so would cost $X megabucks cause Y years delay in deployment.
       
      As to the whole "this may be caused by our own monitoring"... (Left hand/right hand.) It wouldn't be the first time I've seen something like this. Back in the 80's, one of the Navy's technical branches came up with a spiffy new system that needed the submarine's heading as one of it's inputs. So when they installed the prototype on my boat, they spliced into an existing analog signal - one that also also fed ships heading to the [Trident backfit] missile fire control system. When the spiffy was operating, it would read the signal every minute - loading down the line and taking it out of spec for fire control, causing fire control to go into alarm.
       
      Making things even more frustrating for the navigation guys and for us down in fire control, the spiffy (which was operated by a third, different, division) was only operated a couple of hours a day - making it look like an intermittent fault. An intermittent fault that didn't match up to anything either navigation or fire control was doing., and as any tech knows, that's hardest kind to troubleshoot. (Not to mention, what the hell kind of intermittent occurs precisely every sixty seconds for an hour - and then quits?) Finally, after a month of great frustration trying to track the fault, we made a Hail Mary pass and started physically tracing the signal from the nav center down to fire control - and discovered the splice.
       
      It turned out that the branch that 'owned'[1] the spiffy also 'owned' the junction box the splice was made in, even though they didn't 'own' the signal that passed through it. Since a) the spiffy was highly classified [2], b) they 'owned' the junction box, and c) it was cheaper to make that splice than to run a cable to a less accurate heading source that they 'owned', they didn't feel any need to ask permission or inform anyone that they had done so.
       
      Our CO solved the problem by ordering the spiffy shut down and tagged out... This then turned into an enormous turf war between the branches. It took Even Higher Authority explained the to spiffy's 'owners' that interfering with the ships strategic mission was Not Acceptable even if it made their spiffy more expensive. In the end, the spiffy was never deployed operationally anyhow because of other problems, and when the Cold War ended Congress declined further funding for it.
       
      [1] Everything on the boat belongs to someone, on and off hull, and that someone is responsible for maintenance, training, funding, etc...
       
      [2] Outside of the guys onboard that operated it and a few officers, all we knew was that "something" had been installed aboard for testing.
       

      Now... I've obviously made some typos and a few things could be made clearer in the above... unfortunately /. doesn't allow editing or clarification of a post after it's written...

      That's what the "preview" button is for, so you can see what it looks like and can edit it down int the edit box before submitting.

  22. Spin? by astrashe · · Score: 3, Insightful

    A big story goes out about how the drone control system are really seriously compromised. Not only have they detected malware, but they're unable to get rid of it. A few days later, a new story comes out. "Yeah, we totally meant to do that." Only it doesn't even say that. Instead, it says, "Wouldn't it be interesting if they totally meant to do that?"

    Even if the malware was installed by some shadowy arm of our government, it's a giant screw up if the guys who are in charge of running the systems didn't keep it out and can't remove it once it's detected. If the guys running the system were competent, the shadowy arm of our own government shouldn't be able to install this crap and more easily than anyone else.

  23. Re:Plausible Deniability to Assassinate People by arisvega · · Score: 3, Interesting

    it must have been those pesky hackers; the virus did it.

    No, I'm not buyin it.

    The military is the military, they do not "do" plausible deniability: they receive orders, and execute them.

    My guess is that these are nested "rootkits", if you will, reflecting the various levels of clearance that exist in a military foodchain. One can then log in and spy on all the others that his clearance allows him to.

    --
    The three laws of thermodynamics:(1) You can't win. (2) You can't break even. (3) You can't even quit.