Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hacking a 'Smart' Sniper Rifle

Posted by Soulskill on from the how-the-borg-really-started dept.

An anonymous reader writes: It was inevitable: as soon as we heard about computer-aimed rifles, we knew somebody would find a way to compromise their security. At the upcoming Black Hat security conference, researchers Runa Sandvik and Michael Auger will present their techniques for doing just that. "Their tricks can change variables in the scope's calculations that make the rifle inexplicably miss its target, permanently disable the scope's computer, or even prevent the gun from firing." In one demonstration they were able to tweak the rifle's ballistic calculations by making it think a piece of ammunition weighed 72 lbs instead of 0.4 ounces. After changing this value, the gun tried to automatically adjust for the weight, and shot significantly to the left. Fortunately, they couldn't find a way to make the gun fire without physically pulling the trigger.

43 of 73 comments (clear)

  1. Not that impresssed by CajunArson · · Score: 1

    What they are saying is: If you reprogram a computer, you can get it do to the wrong thing!

    I could mess up any computer by going through the config files or even recompiling binaries to intentionally break stuff.

    It gets more interesting if they could show how to do this remotely on a real battlefield instead of just taking a device and acting all shocked that it behaves differently when reprogrammed.

    --
    AntiFA: An abbreviation for Anti First Amendment.
    1. Re:Not that impresssed by Mirage · · Score: 2

      From TFA: "When the Wi-Fi is on, the gun’s network has a default password that allows anyone within Wi-Fi range to connect to it. From there, a hacker can treat the gun as a server and access APIs to alter key variables in its targeting application. (The hacker pair were only able to find those changeable variables by dissecting one of their two rifles and using an eMMC reader to copy data from the computer’s flash storage with wires they clipped onto its circuit board pins.)"

      So, it's a remote exploit in that you can do it if you're within Wi-Fi range (and the gun has it's Wi-Fi turned on), and they had to do some work to find what settings they could change via the API. Seems like a cromulent hack to me.

  2. Fire without physically pulling the trigger by PPH · · Score: 3, Funny

    Every redneck knows how: Just clean it.

    --
    Have gnu, will travel.
    1. Re:Fire without physically pulling the trigger by i.r.id10t · · Score: 1

      Hrm... none of my guns have gone off with out having a booger hook on the bang bang lever... but then, I don't own a Remington 700 http://www.upi.com/Business_Ne...

      --
      Don't blame me, I voted for Kodos
    2. Re:Fire without physically pulling the trigger by Nidi62 · · Score: 1

      Every redneck knows how: Just clean it.

      Actually, the Japanese Nambu Type 94 pistol used in WWII had a very serious mechanical defect that allowed it to fire without pulling the trigger. Pressure on a certain part on the side of the firearm would cause it to fire. Not a good souvenir for a GI to stuff into a pocket.

      --
      The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
    3. Re:Fire without physically pulling the trigger by swillden · · Score: 2

      Every redneck knows how: Just clean it.

      Only fools try to clean or work on their weapon without unloading it.

      This.

      Further, even after you've unloaded it you should still obey the golden rule of gun safety: never point it at anything you don't want to destroy. If what you're doing requires breaking that rule, first disassemble it so it's no longer a gun. Then, and only then, can you stop worrying about where you're pointing it.

      The reason for this is that most people who hurt themselves or others while cleaning their gun *did* unload it first. Or thought they did.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
    4. Re:Fire without physically pulling the trigger by Attila+Dimedici · · Score: 1

      The first rule of firearm safety: all guns are loaded.

      --
      The truth is that all men having power ought to be mistrusted. James Madison
  3. Doesn't matter any more by RogueWarrior65 · · Score: 1

    The company filed bankruptcy a few months ago. http://arstechnica.com/gadgets...

  4. What a disingenuous douchebag by drinkypoo · · Score: 1

    He also pointed out that the Wi-Fi range of the hack would limit its real-world use. âoeItâ(TM)s highly unlikely when a hunter is on a ranch in Texas, or on the plains of the Serengeti in Africa, that thereâ(TM)s a Wi-Fi internet connection,â he says. âoeThe probability of someone hiding nearby in the bush in Tanzania are very low.â

    High-gain directional antenna what what? They've got hills in Texas, too, little-known fact.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
    1. Re:What a disingenuous douchebag by alvinrod · · Score: 1

      Or you could just hack their mobile device that can function as a hot-spot and use that as an attack vector.

  5. Re:WiFi? by Penguinisto · · Score: 1

    Was kind of thinking the same thing, actually... I'm pretty sure** that no one would be stupid enough to have the thing accessible over wireless, which leaves you the task of actually sneaking up on the damned thing to reprogram it. At that point it becomes a physical access problem.

    ** not perfectly sure mind you, but it counts as a fair no-brainer.

    --
    Quo usque tandem abutere, Nimbus, patientia nostra?
  6. Re:Hack it to only shoot kids by Anonymous Coward · · Score: 1

    And how are you contributing to that 'reasonable discussion'? Hmmmm?

  7. Re:WiFi? by Penguinisto · · Score: 1

    ...and TFA says it's accessible over WiFi.

    I think I know what would get disabled first on the damned thing if I owned it...

    --
    Quo usque tandem abutere, Nimbus, patientia nostra?
  8. Re:Hack it to only shoot kids by Anonymous Coward · · Score: 2, Insightful

    because in Murica we are incapable of having reasonable discussion regarding guns.

    Anyone who ever says "we are incapable of having a reasonable discussion on X" really means "everyone doesn't just accept my opinion on X as gospel, poor me".

  9. prevent the gun from firing by fustakrakich · · Score: 1

    This would be ideal! If we prevent all the guns from firing, no more war! Any technology that could neutralize all weapons would be most welcome.

    --
    “He’s not deformed, he’s just drunk!”
    1. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Yeah, it makes things a bit more personal, doesn't it? And such a world war would be quite the spectacle...

      --
      “He’s not deformed, he’s just drunk!”
    2. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Yes, today's wars are so much more palatable, aren't they? Yeah, as long as it stays off shore, no problem.

      --
      “He’s not deformed, he’s just drunk!”
    3. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Yes, they are...

      Yeah, from a basement command and control room in Nevada, sure! And seeing pretty pictures on the TeeVee... It's all Nintendo to you! Bleh! I'm feeding a troll...

      --
      “He’s not deformed, he’s just drunk!”
    4. Re:prevent the gun from firing by Anonymous Coward · · Score: 1

      No, it's not Nintendo to me. Nor is it Nintendo to drone pilots. That's a bullshit myth that "everyone knows" but isn't actually true in the slightest.

      Today's wars (at least as waged by most developed countries) are in fact far more palatable than the wars of the past. You'd know that if you did some research into how wars were fought historically.

    5. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Tell me all about it after you been there. I don't pretend to know. You shouldn't either. Your comprehension of such things is sorely lacking.

      --
      “He’s not deformed, he’s just drunk!”
    6. Re:prevent the gun from firing by fustakrakich · · Score: 1

      I only relay what people who have been tell me. Believe what you want. Just don't think you can ever convince me that war is any less savage it has always been. Only a basement dweller would actually believe it.

      --
      “He’s not deformed, he’s just drunk!”
    7. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Bla bla bla. I give witnesses. You give me wikipedia.

      --
      “He’s not deformed, he’s just drunk!”
    8. Re:prevent the gun from firing by fustakrakich · · Score: 1

      I give up! You win!

      --
      “He’s not deformed, he’s just drunk!”
    9. Re:prevent the gun from firing by phayes · · Score: 1

      It takes a while but you do eventually give up arguing your stupidities...

      --
      Democracy is a sheep and two wolves deciding what to have for lunch. Freedom is a well armed sheep contesting the issue
    10. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Yes, you're right! Arguing against war is pretty stupid, isn't it? It's all so nice and neat now. I guess keeping all those nasty pictures off the TV made a difference. Thank you for reminding me. I'll try to stop. I didn't mean to offend anyone's fantasies. So, please, if it makes you feel better go out and tell the world what a fool I am.

      *amazing*

      --
      “He’s not deformed, he’s just drunk!”
    11. Re:prevent the gun from firing by phayes · · Score: 1

      Arguing against war isn't stupidity.

      Claiming that war begins & ends with guns as you have is rank ignorance and outright idiocy.

      You are yet again amazed by the insights of everyone who, unlike you, is able to learn from history... Another sign confirming that you are unable to see beyond your prejudices.

      --
      Democracy is a sheep and two wolves deciding what to have for lunch. Freedom is a well armed sheep contesting the issue
    12. Re:prevent the gun from firing by fustakrakich · · Score: 1

      Uh huh... Maybe you should take a gander at the original post...

      my prejudices.. like yours are so well hidden, only from yourself maybe.

      --
      “He’s not deformed, he’s just drunk!”
    13. Re:prevent the gun from firing by phayes · · Score: 1

      This would be ideal! If we prevent all the guns from firing, no more war!

      You're a blithering idiot who claimed that guns == war and now trying to backpedal. My prejudices are against blithering idiots.

      --
      Democracy is a sheep and two wolves deciding what to have for lunch. Freedom is a well armed sheep contesting the issue
    14. Re:prevent the gun from firing by fustakrakich · · Score: 1

      :-) I think you're leaving out the symmetry thingy I brought up. Ah well... doesn't matter anymore, I've forgotten, myself. Anyway, thanks for the climatic money shot. If you want to keep at it, knock yourself out.

      --
      “He’s not deformed, he’s just drunk!”
    15. Re:prevent the gun from firing by phayes · · Score: 1

      It claims it thinks... Experience tells us that this is false. What symmetry? "Any technology that could neutralize all weapons would be most welcome."?

      As the AC correctly stated, "We were punching people in the face long before we ever hit them with a stick or throw a rock at them. We will still be punching people in the face long after all the lasers, nukes, mines, grenades, and bullets are gone."

      Again, you're blithering, the only way to stop humankind from using aggression is to kill us all off.

      --
      Democracy is a sheep and two wolves deciding what to have for lunch. Freedom is a well armed sheep contesting the issue
    16. Re:prevent the gun from firing by fustakrakich · · Score: 1

      :-) You're the man.

      --
      “He’s not deformed, he’s just drunk!”
    17. Re:prevent the gun from firing by phayes · · Score: 1

      Aaaannnnd he at last comes back into contact with the reality everyone shares instead of building more ever more elaborate pipe dreams...

      --
      Democracy is a sheep and two wolves deciding what to have for lunch. Freedom is a well armed sheep contesting the issue
  10. I'll stick with dumb guns, thanks! by XxtraLarGe · · Score: 1

    I thought this would be a bad idea from the first time I heard about it, just like all the other "smart" guns. Makes it entirely too easy for NSA types to remotely disable weapons, and they have access to a lot better equipment than Sandvik & Auger do.

    --
    Taking guns away from the 99% gives the 1% 100% of the power.
  11. Re:Hack it to only shoot kids by swb · · Score: 3, Insightful

    because in Murica we are incapable of having reasonable discussion regarding guns.

    "Reasonable discussion" usually just means "my ideas are reasonable, and yours aren't, and as long as you're disagreeing with my ideas, you're being unreasonable."

  12. Re:WiFi? by tlhIngan · · Score: 3, Informative

    Was kind of thinking the same thing, actually... I'm pretty sure** that no one would be stupid enough to have the thing accessible over wireless, which leaves you the task of actually sneaking up on the damned thing to reprogram it. At that point it becomes a physical access problem.

    ** not perfectly sure mind you, but it counts as a fair no-brainer.

    The WiFi is there primarily for remote viewing capability. As in someone with a tablet (iPad, Android, whatever) can view the video from the rifle as the gunman uses it. They'll get access to the positioning and tilt of the gun on all the axis as well as what target is marked and what it's tracking.

    It's also one of the newfangled "smart" guns in that the user has to wear a special ring in order for it to fire.

    Also, the computer can only inhibit it's firing, it can't fire on its own. It's why once it's tracking a target, it calculates the necessary positioning to get a hit on the target once you squeeze the trigger (and wear the right ring).

    The goal is to turn basically anyone into a marksman.

  13. Relevant GITS by RevWaldo · · Score: 2

    https://youtu.be/p47eWpzzGtY?t...

    .

    --
    Prisencolinensinainciusol. Ol Rait!
  14. Incomplete by SuperKendall · · Score: 1

    From your link:

    "he expectation from a number of different sites is that TrackingPoint will soon be filing for bankruptcy."

    Did they? Nothing seems to say they actually did, The homepage doesn't say anything about not taking orders...

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
    1. Re:Incomplete by RogueWarrior65 · · Score: 1

      Yeah, it doesn't quite jibe with the expensive booth they had at the SHOT Show this year.

  15. Re:WiFi? by Anonymous Coward · · Score: 1

    Consider though that it's *Likely* that users of these firearms will be turning on wifi as one of the key features is to be able to have a spotter seeing what what the shooter sees via ipad connected with wifi.

    The good news is that most of these layman shooters are just hunters that are not really hacker targets by anyone except PETA. Though it's still concerning that in military/LEO applications the vulnerability is at least in latent existence.

    The other good news is that this sounds like a GREAT plot device for a movie. "Mission Impossible X: Bernardo's Revenge" ... in order to extract stolen classified tech from a bank vault, Tom Cruise hobbles into the bank with his walker (he is getting old) and stages an elaborate bank heist. When the police snipers zero in to take him out with their smart rifles he remotely hacks their rifles to make them all miss. Ok, maybe it's just B movie material.

  16. Best line is the last line by Pascoea · · Score: 1

    “There’s a message here for TrackingPoint and other companieswhen you put technology on items that haven’t had it before, you run into security challenges you haven’t thought about before.”

    They waited till the end of the article to put the most important part? "If you ware going to hook something up to any network you might want to at least think about security"

  17. The problem with hacking a sniper rifle by John.Banister · · Score: 1

    is that you won't know it's there before you've been shot.

    I suppose if you see someone planning to shoot a third party you might manage to hack their rifle, but there's several ways to interfere with sniping if you can manage to be behind the sniper.

  18. Re: WiFi? by dargaud · · Score: 2

    Except if it's the wrong person...

    --
    Non-Linux Penguins ?
  19. Re:WiFi? by Demonoid-Penguin · · Score: 1

    You're saying that connecting to a WiFi setup that has a default password, that is not on by default, which is not actually marketed as a "sniper" rifle (and all of the military connotations that go with it), to change a setting that will do nothing but adjust a calibration that may cause a hunter to miss slightly, is "hacking"? Oh, forgive me, oh mighty so-and-so...!

    No - that's not what I'm saying, I'm saying I read the referenced article. Clearly you didn't or you wouldn't be talking such wank. Try reading what they actually did - hint they didn't make use of existing capabilities - they found a flaw and exploited it to achieve a desired outcome by an unconventional method. The "person" I was responding to (you?) probably believes putting a fork in a power socket is a hack.

    And no, you're not forgiven for being an arseclown. You can go back to moderating down anything that contradicts your misguided belief that you're clever - good luck with that.