Slashdot Mirror

← Back to Stories (view on slashdot.org)

Small Satellite Dish Systems 'Ripe For Hacking'

Posted by Soulskill on from the will-dish-it-out,-but-can't-take-it dept.

The Walking Dude writes: "According to the CS Monitor, 'Thousands of small satellite dish-based computer systems [VSATs] that transmit often-sensitive data from far flung locations worldwide – oil rigs, ships at sea, banks, and even power grid substations – are at high risk of being hacked, including many in the United States, a new cyber-security report has found.' Dr. Jason Fritz said, 'Vulnerabilities exist at all nodes and links in satellite structure. These can be exploited through Internet-connected computer networks, as hackers are more commonly envisioned to do, or through electronic warfare methodologies that more directly manipulate the radio waves of uplinks and downlinks.'"

1 of 44 comments (clear)

  1. #BadBIOS - BIOS Malware by Anonymous Coward · · Score: -1, Offtopic

    #BadBIOS - BIOS Malware

    #

    - Copernicus: Question Your Assumptions about BIOS Security

    http://www.mitre.org/capabilities/cybersecurity/overview/cybersecurity-blog/copernicus-question-your-assumptions-about

    - "Seems to have a BIOS hypervisor, SDR functionality that bridges air gaps, wifi card removed."

    https://twitter.com/dragosr/status/388512915742937089

    =

    - #BadBIOS

    https://twitter.com/search?q=%23BadBIOS

    =

    - "More on my ongoing chase of #badBIOS malware."

    https://plus.google.com/103470457057356043365/posts/9fyh5R9v2Ga
    https://plus.google.com/103470457057356043365

    =

    - Nobody Seems To Notice and Nobody Seems To Care: Government & Stealth Malware

    http://slexy.org/view/s2otvoDuKW

    =

    - Gpu based paravirtualization rootkit, all os vulne

    http://forum.sysinternals.com/gpu-based-paravirtualization-rootkit-all-os-vulne_topic26706.html

    =

    - #badBIOS (and lotsa paranoia, plus fireworks)

    https://kabelmast.wordpress.com/2013/10/23/badbios-and-lotsa-paranoia-plus-fireworks/

    =

    - Air-Gap-Breaching BIOS Rootkits with SDRs Inside (and smartphones, Snowden, NSA, Wikileaks)

    "A little while back I covered a paper on FPGAs that could turn themselves into SDRs. I suspected this would be one way to breach an air gap.

    It seems I was right on the money. If a little behind the times.

    Researchers have found an incredibly persistent BIOS rootkit in the wild that includes SDR functionality⦠literally turning your computer into a radio transmitter to exfiltrate data even if youâ(TM)re not connected to the Internet." [..]

    "The researchers were using a new tool, Copernicus, which sadly seems to be Windows-only. Nevertheless a number of you might be interested in checking it out.

    There is one enduring mystery of this rootkit⦠how does it survive BIOS reflashes?" [..]

    https://kabelmast.wordpress.com/2013/10/11/air-gap-breaching-bios-rootkits-with-sdrs-inside-and-smartphones-snowden-nsa-wikileaks/

    https://twitter.com/dragosr/status/388511686744764416

    - IMHO Copernicus is the most important security tool in recent history. Already found persistent BIOS malware (survives reflashing) here.