Hacking a Satellite is Surprisingly Easy

Caroline Haskins, writing for The Outline: Hundreds of multi-ton liabilities -- soaring faster than the speed of sound, miles above the surface of the earth -- are operating on Windows-95. They're satellites, responsible for everything from GPS positioning, to taking weather measurements, to carrying cell signals, to providing television and internet. For the countries that own these satellites, they're invaluable resources. Even though they're old, it's more expensive to take satellites down than it is to just leave them up. So they stay up. Unfortunately, these outdated systems makes old satellites prime targets for cyber attacks. [...]

A malicious actor could fake their IP address, which gives information about a user's computer and its location. This person could then get access to the satellite's computer system, and manipulate where the satellite goes or what it does. Alternatively, an actor could jam the satellite's radio transmissions with earth, essentially disabling it. The cost of such an attack could be huge. If a satellite doesn't work, life-saving GPS or online information could be withheld to people on earth when they need it most. What's worse, if part of a satellite -- or an entire satellite -- is knocked out of its orbit from an attack, the debris could create a domino effect and cause extreme damage to other satellites.

Say what?

[Snotnose]

I'd think a satellite would want some type of RTOS for it's main system. I used WinCE some 15-20 years ago and it sucked ass, but I'd rather use it to control a satellite than I would Win95 (or a modern Linux for that matter).

Re:Say what?

[GameboyRMH]

Was thinking the same thing. I am sure there is no satellite (other than perhaps a modern amateur microsat) running anything bearing any resemblance to a desktop operating system. The control system may be running Windows 95, but that's a different problem.

Re: Say what?

This whole article is complete bullshit. Of course satellites do not run Windows 95. GPS satellites alone have existed for longer than that.

Wtf Slashdot?

Re: Say what?

[Monkey]

Linked article doesn't even mention Windows 95 except in the title. Shit story.

Re: Say what?

[Spinlock_1977]

I agree - total BS. Come on Slashdot, your site advertising is becoming intrusive and flaky, and your article selection is getting lame. Failing to 'get' your audience will diminish your future, which I would mourn.

Re: Say what?

[oh_my_080980980]

RTFA:

"Hundreds of multi-ton liabilities—soaring faster than the speed of sound, miles above the surface of the earth—are operating on Windows-95." https://theoutline.com/post/42...

Re: Say what?

[nitehawk214]

Everything else in that statement was bullshit clickbait fud as well.

Who cares what the satellite's mass is? "faster than the speed of sound" no fucking kidding. "miles above the surface of the earth", just a bit of an understatement.

Are they trying to suggest that someone hacking a satellite can cause it to crash into someone's house?

Re:Say what?

[forkfail]

Hey, now, I hear he's pretty 1337. If anybody around here can sniff out some srs h@x0ring, it's msmash. You can't have the srs hax that he does without being able to recognize them when he seez them.

I mean, I hear that he once used a bread clip for an iPhone charger holder!

And when it comes to OS's, no one's better. One time, he managed to trick an old lady out of her place at the front of the line at the Genius Bar, and managed to get his password reset in under 10 minutes!

He's a master at networking, too. He once talked to 7 actual real people in three hours at a cocktail mixer that he only had to pay $89 to attend!

No, he's a guy who wears his flair with pride and who empathizes with people having a case of the Mondays.

I will now go weep for the state of /.

Re:Say what?

[Dutch+Gun]

Honestly, I question whether any significant numbers satellites are actually running Windows 95, despite the claim of "hundreds." That seems like a terrible choice for a satellite OS, and there are plenty of alternatives. Why in the world would developers skimp like that on projects that may cost tens to hundreds of millions of dollars?

I saw absolutely no sources or validation of this claim by the author, who, by the way, even got the OS name wrong, calling it Windows-95. So, forgive me, but I'll remain skeptical of this claim until I see a bit more evidence.

Slashdot editors, didn't this claim look the tiniest bit suspicious to you either? Damn.

Re: Say what?

[Brockmire]

Jamming is as simple as aiming a high power, high duty transmitter using same frequency as the receiver. This is exactly the same whether the OS on board is 5, 20 or 50 years old, running linux, Windows or QNX. msmash, you are a piece of shit for posting intentionally shitty articles. I'm not sure if you're really, really dumb, or a really, really big asshole.

Re: Say what?

[Rakarra]

Who cares what the satellite's mass is?

Well, that can help determine if, when it plunges to earth, if it will just burn up or if there will be anything left to cause a real impact.

Re:Say what?

[arglebargle_xiv]

Same here. In fact there's only one single comment on Windows 95 in the entire article, and that's the unfounded, unsupported, unreferenced claim that satellites are "operating on Windows-95". And it's followed by "A malicious actor could fake their IP address, which gives information about a userâ(TM)s computer and its location. This person could then get access to the satelliteâ(TM)s computer system".

What a pile of bollocks. It's just a bunch of satellite-related gibberish collated together into a clickbaiting article.

Re: Say what?

[nitehawk214]

Shut up

You make a compelling argument, there.

Windows 95?

[b0s0z0ku]

Windows 95 is a consumer desktop OS? Does the author means that the control software for the satellites runs on Win 95?

I'd imagine that the satellites themselves would use a real-time or server OS i.e. QNX, NT, or a Unixoid OS. Running a desktop OS on hardware with no direct display would be stupid, and satellite engineers aren't likely to be stupid.

Re:Windows 95?

... and satellite engineers aren't likely to be stupid.

Yeah, but random bloggers? Not so much...

Re:Windows 95?

[Solandri]

Agreed. But the key here is that once you put a satellite in orbit, you're stuck with that hardware for however many years or decades the satellite continues to operate. I can easily imagine some satellites are 1995-era. Their hardware may not be able to cope with modern encryption algorithms in a timely manner, resulting in it being easier to hack their streams and control channels using modern computers on the ground.

Re:Windows 95?

[postbigbang]

One might imagine that there are satellites looking down at the earth for sources of interesting, space-beamed transmissions, and their content. There are a lot of monitoring dishes up there these days, pointing directly at that person with a yagi antenna spewing iterations of hack attempts. Then there's a knock at your door.

I'll imagine if you try and hack GPS and other high-value assets, you're not only being watched but by people that play for keeps.

Go ahead. Make some analyst's day.

Re:Windows 95?

[Archangel+Michael]

You'd be right, except the part that kind of assumes that it is the back yard Yagi pointing enthusiast and not the State sponsored bad actor in places hard to reach by normal "people that play for keeps".

Re:Windows 95?

Didn't you RTFA? They have IP addresses that can be spoofed. That means you don't need an antenna, you just need to connect to the space Internet with your space computer wearing your space pants.

Re:Windows 95?

[Tablizer]

satellite engineers aren't likely to be stupid.

True, but their bosses or company owners might be to shave a buck. I've seen co's run public CMS's using Microsoft Access. I warned them, but they didn't want to pay for a real database and don't trust OSS.

Re:Windows 95?

[angel'o'sphere]

Imagine you use something like a mouse to remote control a satellite that you are interfacing with with something like RDP ... oh the jitter!

Re:Windows 95?

[postbigbang]

One imagines discrete little drones..... isn't that how it's done these days?

Re:Windows 95?

[b0s0z0ku]

Ha!! Did Win 95 even support RDP?

Re:Windows 95?

[The+New+Guy+2.0]

I worked with Access in the early 2000s and found it as rapid an application development tool as Visual Basic 6.0. The company database worked well until it hit a million records in the transaction log. Then we moved to SQL Server and everything turned over with just a minor change to the data source string.

Today's SQL Server and Oracle are bloated with things you'll never use, but have taken the magic of sort routines and indexing far further than can easily be explained.

Processor in space? There's the problem... satellite control software belongs on Earth!

Re:Windows 95?

[postbigbang]

Hey mommy, what's that black Escalade doing parked in the driveway?

Re:Windows 95?

[angel'o'sphere]

The RDP protocol probably not. But there were remote 'control' programs, I think even Timbuktu, the famous one for Macs had a Win95 version.

Have real doubts about this.

[forkfail]

NT I Could See

Back in the day, NT was actually a pretty good OS, and used in a number of mission critical applications. (Including some I worked on.)

But... 95? Really?

That was certainly not MILSPEC approved for that sort of thing. And NASA had even tighter requirements and a higher specification bar.

I really suspect that the author has their facts a bit scrambled.

Not all can be hijacked

[aglider]

As some are having their BSOD

Re:Not all can be hijacked

[glenebob]

Windows 95 didn't really have a BSOD. That was (is) an NT thing.

Re:Not all can be hijacked

[The+New+Guy+2.0]

I had to use Norton Crashguard to get my Prodigy shows out in 1999... too many people throwing blue screens around back then.

Re:Not all can be hijacked

[glenebob]

Sadly, I have used Windows 95. I wrote software on Windows 95 :( It was kind of like developing on DOS, but the write/debug/crash/reboot cycle took a lot longer.

Probably the terrestrial C&C servers.

Although even there I would expect most of them to be running some sort of unix.

As far as satellite OSes go, I would expect something better than linux or embedded OSes. It needs to be a nuclear/medical grade RTOS with failover capabilities on every codepath and piece of hardware. Otherwise what is the point when a stray bit of cosmic radiation flips or damages something important?

Re:Probably the terrestrial C&C servers.

[ToxynSummers]

Although even there I would expect most of them to be running some sort of unix.

As far as satellite OSes go, I would expect something better than linux or embedded OSes. It needs to be a nuclear/medical grade RTOS with failover capabilities on every codepath and piece of hardware. Otherwise what is the point when a stray bit of cosmic radiation flips or damages something important?

And yet every CT/MRI/X-ray machine I've ever used was running Windows 2000, XP or 7 with the exception of a single GE portable x-ray machine that was unstable as hell...

Security / Jamming

[foxalopex]

I'd be surprised if modern satellites don't have some sort of protection built into them after the legendary HBO Satellite hack that resulted in the words "HBO Sucks" displayed across North America. Jamming is always a possibility with a high powered transmitter although doing so would be the equivalent of putting a giant bulls-eye on your back since it's hard to hide a massive signal. There's also a huge question of why as well. Some of these hacks require some not so trivial equipment so it's sort of hard to see someone spending a small fortune just to bring down a service which many folks require just for laughs.

Re:Security / Jamming

[Strider-]

Naw, the vast majority of commercial communications satellites are still dumb bent-pipe repeaters. There's no security on them, save for nulling antennas and similar techniques.

I used to work for a company that built flyaway VSAT systems, so I know this stuff pretty intimately. A number of years ago, SES Americom (one of the big operators in North America) called me up for help in locating a wildcat transmitter that was causing interference with one of their birds. They called us because they knew we built stable, small aperture uplink terminals that could be a useful reference. Basically they had me transmit a known narrow-band signal at high power, then used that and my sidelobes as a reference to find the offender. After a weekend of doing doppler locating, they tracked it down to about a 1 x 2 mile ellipse, east of Detroit. Their suspicion was that it was a HughesNet terminal, probably on a gas station, that had gone bad.

Re:Security / Jamming

[ElizabethGreene]

I'd love to be able to dig into this author's source material. There are some fairly strong (possibly FUD) claims in the article, but it's missing the useful details.

E.g. It claims that end of life satellites out at GEO could be used for mayhem, but that doesn't seem right. EOL satellites at GEO are, by international convention, moved up to a graveyard orbit, the remaining propellant dumped, and the power subsystems turned off. This is done to reduce the amount of harm a software or hardware glitch (exploding batteries) can cause in the dying spacecraft

That said, there is some precedent for concern. There were successful and partially successful (possibly state-sponsored) cyberattacks against Terra EO and Landsat-7 in the 2000s.

Re:Security / Jamming

[Strider-]

and the power subsystems turned off.

Not just turned off, but permanently disabled, typically by deliberately blowing fuses. There is no coming back from it.

Re:Security / Jamming

[angel'o'sphere]

Depends what you mean with jamming.
If you send a strong signal to the satellite, it might be disabled to pick up control commands.
But to jam e.g. GPS, you need to jam the area where the victims are, sending a "flash of energy" to the satellite does not disable it from sending its GPS signals down to earth ... same for TV etc.

Re:Security / Jamming

[Obfuscant]

after the legendary HBO Satellite hack that resulted in the words "HBO Sucks" displayed across North America.

Hacking uplink content on a video distribution satellite is NOT hacking the satellite control system. Not even close.

There was a story a few years ago about people "hacking" a military satellite system because they found out that it was acting like an open repeater. That, too, is not hacking the satellite control system.

This summary is crap, the claims are ridiculous, and /. should never have repeated this nonsense. News for nerds, indeed. Hysteria for morons, more like it. "Oh, those awful hackers could drop an HBO satellite weighing MANY TONS and going FASTER THAN SOUND onto my head! I better put a second layer of tinfoil on my hat..."

Re:Security / Jamming

[Obfuscant]

But to jam e.g. GPS, you need to jam the area where the victims are,

To jam a GPS receiver, you need to provide a signal to the receiver.

You CAN jam the uplink to the GPS satellite so it does not get the relevant ephemeris data (corrections to its and other SV's locations and timing), BUT ... the GPS satellites are LEO and will move out of range of your jammer very quickly, and there are other in the visible constellation that can provide the same data.

Jamming the uplink just isn't a very productive thing to do. Jamming the downlink, however, can cause issues for regional users. The military was doing some testing on this not long ago, which was announced to the aviation community through a NOTAM.

Re:Security / Jamming

[The+New+Guy+2.0]

Actually, I was told back then that the HBO Hacks was really an authorized publicity stunt... it was first aimed at censoring movies so kids could watch, then was misinterpreted by CBS News... too bad we don't have the CBS Latenight News to correct CBS Evening News anymore.

Re:Security / Jamming

I personally integrated many birds for SES, Hispasat, Hughes, NBNco, Echostar, I even retrofitted Terrestar 2 into Echostar 21. Article is BS. Used mostly BAE rad750 processors. subsystems are controlled by MIL-STD-1553 just like your F14 tomcat was initially designed for developed in 1978. Mostly running scripts in either ADA or tcl from ground stations. All their communication is fully encrypted on launch. You could theoretically jam them by blasting the same frequencies, it wouldn't go long undetected.

Re:Security / Jamming

[K.+S.+Kyosuke]

. the GPS satellites are LEO

Aren't they in MEO?

Re:Security / Jamming

[Obfuscant]

MEO, LEO, the point is that they aren't sitting still waiting for people to point an antenna at them to jam them.

Re:Security / Jamming

[K.+S.+Kyosuke]

I'd think that measures to prevent that from happening would be reasonably easy to implement - using a strong transmitter on the "official" site for high S/N ratio, using pseudorandom frequency hopping to to increase it even further etc. At least in theory, they *can* be sitting still and yet be unaffected.

Re:Security / Jamming

[AHuxley]

The money was in sending data. Not in having complex systems to encrypt in space. That was power and complexity that can be done on earth. The sat just gets data and moves it. More data, more profit.

Re:Security / Jamming

[AHuxley]

The US and NATO love their space command spending. Advance nations have sent in their spies and now have an understanding of how the West mil systems work.
The more the US and NATO become totally dependant on systems that need a "strong signal to the satellite" the more other advance nations will study that operational weakness.

Re:Security / Jamming

[ti1ion]

AC, you have a reading comprehension problem. And you are awfully angry and impulsive for a guy who's got to be in his 50s by now.

Read the post carefully. The original poster was referring to MIL-STD-1553B as being "designed and developed in 1978", which is pretty accurate. But, he NEVER stated when he wrote scripts. You just assumed he wrote them in 1978.

Re:Security / Jamming

[angel'o'sphere]

GPS has no uplink.
It only has a downlink. Jamming the downlink basically means you point a strong enough noise signal on the users, not on the sattelite.

How would a sattelite send up a decade ago track a billion devices via an uplink? The sattelite works like a light house, it simply blinks its position and time.

BULLSH@#

[ghinckley68]

There has never been a microsoft flight certified any thing.
And no intel stuff that i know of.

those birds were designed in the 60s for GPS and more than likely use some version of the IBM AGC for the apollo missions.

LAMENESS FILDER XDDDDD

What do you want to bet that "Caroline Haskins, writing for The Outline" has no idea what hacking is.

What a terrible article, and by article, I mean Mail Chimp advertisement.

Re:LAMENESS FILDER XDDDDD

[forkfail]

There was a time when the editors of this site would have augmented the submitted summary of the article to make it significantly more mocking than your comment.

Today, though, it is hard to tell if our benighted editors could get a job at the Apple Genius Bar.

But what does this insensitive old clod know?

Re:LAMENESS FILDER XDDDDD

[Archangel+Michael]

We're just the old Greybeards we used to make fun of back in the day.

Re:LAMENESS FILDER XDDDDD

[fahrbot-bot]

What do you want to bet that "Caroline Haskins, writing for The Outline" has no idea what hacking is.

She might know a little. She might have a cat. They hack up stiff all the time.

Re:LAMENESS FILDER XDDDDD

[Darinbob]

You're assuming we actually have editors on Slashdot. I think there was a lazy editor that wrote a bunch of shell scripts to simpllify the job, that editor was later fired, and now those rogue scripts are now in charge.

Emmbeded system from Hell

Just remember that Satellites are embedded systems from Hell.

Many moons ago, I had to work on a MSDOS system because we needed something with a very small foot print - and we rolled our own when it came to network connectivity (Ah yes, using a MAC address as the machine's address! Fun times!!) [Linux was shit back then, btw].

And today's OSes are such bloatware. WTF?! I know they want to give the user an experience and they got to support a lot of hardware, but even then, really?! My Android phone ran out of space with 8 gigs - and that's was after removing ALL my apps. Yes, Android and the Google and facebook shit that I can't remove without cracking the phone (not gonna happen) requires 8 Gigs - and facebook's app has a sneaky way of coming back alive after I force quite the thing (explain THAT Fuckerberg!)

My point (tl;dr) is that "old" tech is sometimes the best solution to one's problem.

Re: Emmbeded system from Hell

[Brockmire]

You may have noticed, people are not very productive trying to do daily work on a 4MB router flash. They also like to put graphics cards to use. Not sure why progress and technology needs to be explained on a nerds website. You might be trespassing.

I could find no evidence for the claim about Win95

[UnknowingFool]

I read the article and while it makes the claim about Win95, it doesn't go into detail about it or support it with facts. I find that claim somewhat incredulous as most satellites would never use a GUI based desktop OS. Maybe some control systems on the ground use Win95 and have ever been updated.

I would agree with the basic premise that many satellites especially older ones are not hardened against cyber attacks.

The SKY IS FALLING....

[bobbied]

Literally... Chicken little has confirmed it!

Um... Yea, a lot of stuff is POSSIBLE, but the question really is about how practical it is. What's the actual level of risk? Pretty low.

These things are expensive. Older satellites might be vulnerable to exploits launched from the Web, but I've got to believe that such "over the web" control systems are quite well protected and monitored. Disrupting over the AIR (I.E. RF links) are going to require specialized equipment and some specialized knowledge about what you are doing (not all satellites use the same control uplink frequencies), and actually taking CONTROL is like to require insider knowledge of expected modulation techniques, telemetry formats, encryption keys and a lot of other things.

There are a lot of places that have the uplink equipment, though it's not that long of a list and most of that equipment is already being used for commercial applications. An uplink setup is prohibitively expensive for an individual to build and commercial companies that own them like to keep track of when they are used. You could possibly arrange to use one by stealing a mobile unit or breaking into one and using it, but you will get discovered pretty quick.

All this to say, Disruption is easy, so doing a denial of service attack is pretty high risk, you just need to access the right equipment. DOS attacks (and uplink mistakes) happen all the time now. Taking control? Not very likely, very low risk. State actors might have the resources, but apart from that, it's not going to be worth the effort and costs.

Re:The SKY IS FALLING....

[Gravis+Zero]

Um... Yea, a lot of stuff is POSSIBLE, but the question really is about how practical it is. What's the actual level of risk? Pretty low.

I disagree because any nation-states would love to have some free satellites under their control, especially if they can spy on other people who do use it. Russia in particular has been known to use hacked sats to try and mask the origin of their hack attacks.

An uplink setup is prohibitively expensive for an individual to build...

but not a nation-state!

State actors might have the resources, but apart from that, it's not going to be worth the effort and costs.

Poppycock! A private sat would be awesome!

Re:The SKY IS FALLING....

[bobbied]

Whoosh.. ... I'm sorry... I think I pretty much *said* that a country might have the resources to do this... But I'd like to point out one pretty important aspect of somebody trying something like this....

Hijacking another nation state's space assets would be darn close to an act of war. At the very least this would be akin to a navy boarding a foreign flagged ship by force in the open ocean or running a blockade if you do an DOS attack. You might not start a war, but you are taking the risk and will surely get your knuckles wrapped by the international community.

So *could* a foreign state do this? Yep. Is it a huge risk? Unless you are at war or somebody wants to start one, NO. IF you are at war, all bets are off anyway because satellites are easy prey regardless of what software they run.

Re:The SKY IS FALLING....

[Gravis+Zero]

LOL @ starting a war.

They hack commercial satellites and there are lots of them, nimrod.

Re:The SKY IS FALLING....

[bobbied]

LOL @ starting a war.

They hack commercial satellites and there are lots of them, nimrod.

Nation states hijack commercial satellites? Citation please?

Such activity by a foreign power would be generally the same as hijacking a commercial vessel on the open sea. You might get away with it, but do it enough and the originating country is going to get upset with you..

Re:The SKY IS FALLING....

[cdsparrow]

Regardless of if they run win95 (they don't) and anything else said in this article, not like many of these things would be dangerous if deorbited anyway. What % of the sats up there could survive reentry and hit a target? Gonna bet it's near zero.

Probably are gonna have to start worrying about such things now that launches are getting cheaper and faster cadence. Get some heavy tungsten rods into orbit and you would basically have a weapon in the nuclear class of power without any of the downsides of nuclear. Drop a ton of tungsten from orbit into the middle of a city and see what happens...

Re:I could find no evidence for the claim about Wi

[Strider-]

The actual command/control of the spacecraft themselves is protected by reasonably heavy Cryptography. When a Long March rocket failed in China while launching Intelsat 708, Intelsat failed to recover the cryptographic equipment from the wreckage, despite significant risks taken by their crew.

Probably just ground control stations use Win95

[bigmacx]

There's noo way some satellite up there is actually running Windows 95 for anything on the the satellite hardware itself. I'm not believing that.

But I will believe there might be ground control workstations running Windows 95 for some function due to having custom software developed on it or a hardware device/card that cannot be moved to a newer version of Windows.

I know of all kinds of customer sites with Win95 workstations still in use. These are for specialized applications like manufacturing machine control or scientific test tools. They either keep them completely off the network and block all USB ports, etc, OR they use a very discrete localized network.

Re:Probably just ground control stations use Win95

[Thelasko]

. They either keep them completely off the network and block all USB ports, etc, OR they use a very discrete localized network.

That's overkill. Windows 95 doesn't support USB.

Re:Probably just ground control stations use Win95

[labnet]

Yup. We have SMD robots still running Windows NT and 95 and indeed they sit on their own subnet with only access one firewall route to a file share.

Re:Probably just ground control stations use Win95

[bigmacx]

To prevent BIOS boot off USB or any number of firmware or otherwise issues. We tell them to basically epoxy any port not connected to something. These machines never, ever change and there's probably little risk of infection, but even so... When stumbled upon, we at least duplicate the HD. In most cases, there's some hardware card that is the real single-point-of-failure. A typical manufacturing customer will keep these ancient MMI systems because of HW irreplacable HW interfaces and the new version costing a lot. One place even has Win3.1/DOS6.22 running a 24/7 production line because the updated control station costs $40k. Forget that just to get fancy new graphs and statistics.

Re:Probably just ground control stations use Win95

[bigmacx]

It's almost as cowardly a thing to do as posting on /. as AC

Re:Probably just ground control stations use Win95

[bigmacx]

LOL, I know those kinds of places. A lot of times, the production engineering/maintenance peeps won't let IT anywhere near the "stuff."

Re: Someone will tell us how...

[saloomy]

Security through obscurity is no security at all, and no amount of smugness in a retarded comment will fix that.

Releasing the know how does multiple services. First, it lets independent operators or consumers of said tech determine if the attack vector works on their systems. Second, it encourages the producers / manufacturers to implement fixes. They will be less inclined to spend the resources correcting the issues if they feel the fact that the attack isn't in the wild. Third, it prevents bas actors from capitalizing on an attack since the issue would be resolved faster. Fourth, it allows consumers to implement mitigation strategies and test them, while a solution is being formulated.

Wowza

[courcoul]

Sounds like an arsonist's wet dream.

Sad consequence of the Get It Up / Get It Out / Get It Sold NOW mentality, with no foresight about security.

Re: I could find no evidence for the claim about W

[UnknowingFool]

Modern satellites may be hardened against modern cyber attacks but the ones in orbit for decades might not be.

Creativity

[deesine]

And here I thought forks were just a wonderful modern invention.

Really?

[FaxeTheCat]

I browsed the article, and there are no actual facts to support the claim that hacking a satelite is surprisingly easy. None.

The claim that they run Windows 95 is not supported at all. A quick google revealed that most of the older satelites did not have a traditional operating system at all.

The whole article looks mostlly like clickbait, written by somebody with little knowledge of computers and even less about satelites.

Re:Really?

[Obfuscant]

If our GPS satellites are that easily hacked (to say nothing of them running on Win95 - seriously?) then we'd deserve that.

If ours are that easily hacked, then you can bet that the Russian's GLONASS and China's BDS are not, nor will the EU Galileo (here) be so easy. Modern GPSs compare results and know when to throw out an SV when it gives stupid answers. If you have a GPS, then update to GNSS and be safe. It costs more than a tinfoil hat, but you can sleep peacefully knowing that your location will be well known.

Breaking news: give hackers unlimited access to 25 voting machines and they will hack into all of them. Bruce Schenier's latest submission to Risks Digest warns of the impending disaster ... which could only be worse if Russia dropped a few HBO satellites on major US polling places during the next election!

Re:Really?

[The+New+Guy+2.0]

GPS already is known to have government confusers installed... it'll lie to you or give no answer when instructed to by the military. This was deployed in Massachusetts during the ABC News' Bob Woodruff bomb scares.

Re:Really?

[Obfuscant]

GPS already is known to have government confusers installed...

Paranoia is strong in this one. Selective availability was turned off a very long time ago (May, 2000), because so many services had come to depend on GPS. It doesn't lie to you, it provides an answer with reduced accuracy.

This was deployed in Massachusetts during the ABC News' Bob Woodruff bomb scares.

Bob Woodruff was injured by a roadside bomb in Iraq in 2006, not Massachusetts, which had nothing to do with GPS at all. SA is not applied to a state, it is a system-wide (global) effect of a small dithering of the data stream.

The reason SA was turned off is because it is very easy to bypass the degradation, either via differential or real-time kinematic GPS systems. There are now national DGPS networks, and wide-area augmentation systems (WAAS) for high precision GPS output.

Of course there are methods to jam GPS, and the military OF COURSE has access to systems to do that, but they can't "turn off" GPS for the "state of Massachusetts", and they certainly wouldn't do that to people in the state of Massachusetts to protect journalists from IEDs in Iraq.

Re: Really?

[Brockmire]

Haha. Until I read your reply, I thought he was making a joke, and government confusers were dumb and misinformed government employees dispersing highly dumb things verbally (like msmash). I didn't realize what was meant until your reply and was talking about precision.

Re:Really?

[The+New+Guy+2.0]

Woodruff was injured, not dead in the Iraq explosion. Check your favorite news archive for "World News Tonight with Elizabeth Vargus and Bob Woodruff"...

Re: I could find no evidence for the claim about W

[Strider-]

The Intelsat 708 launch failure occurred in 1996. Typical lifespan for a geostationary satellite is approximately 15 years, before they're moved to a graveyard orbit and rendered inert.

For the most part, the TT&C (Tracking Telemetry and Control) codes for managing the spacecraft themselves has always been a closely guarded secret, and one fo the things that is subject to ITAR controls, due to the cryptography involved.

That said, there have been at least one incident where sabotage of the satellite was suspected, but this occurred during a rather bitter labour dispute between the satellite operator and their tracking and monitoring staff.

Faster than the speed of sound, in space!

[Roger+W+Moore]

I noticed that too but my own favourite was "soaring faster than the speed of sound" which for these satellites, is zero because they are in space. If there was enough atmosphere to transmit sound there would be a huge atmospheric drag.

Really?

[argStyopa]

"If a satellite doesn't work, life-saving GPS or online information could be withheld to people on earth when they need it most."

If our GPS satellites are that easily hacked (to say nothing of them running on Win95 - seriously?) then we'd deserve that.

To say which: no, I think a big chunk of the OP is a) wrong, b) getting into histrionics over what they IMAGINE might happen in their wildest dreams.

Re: Probably just ground control stations use Win9

[Cochonou]

Of course, youâ(TM)re right. The satellites we are talking of are not running on x86, and are certainly not using Windows 95. In fact, on a lot of them, there isnâ(TM)t any ÂÂoperating systemÂÂ layer. And on the others, youâ(TM)re more likely to find an RTOS running on PPC or SPARC. As you said, the article writer probably mistook the operating systems running on the ground support equipement and command/control stations rather than the satellite itself. Nevertheless, if the command/control station can be hacked, it still raises security related questions...

Clippy:

[Tablizer]

"It looks like you are trying to orbit a planet; would you like some help?"

Re:I could find no evidence for the claim about Wi

[clovis]

Maybe someone googled for "what operating system runs on old satellites" and didn't realize that the Satellite made by Toshiba is a laptop, not an actual Earth orbiting device.

I, too, do not believe that any satellite is running Windows 95. To say the least, Win95 has not been optimized for power efficiency or running on resource-poor radiation hardened microprocessors, memory and support chips. Considering the Win95 is just a gui on top of MSDOS, running just MSDOS would make far more sense than Win95. Who would be using a mouse and looking at the screen on a satellite? Would they be using PCAnywhere on a space dial-up modem link?

Furthermore, Windows 95 has a timer wraparound bug that causes a crash every 49.7 days, and that bug wasn't found until the early 2000's, so anyone that used Win95 as a space OS has a dead satellite.

Win95 was used on the ground. Here's some info from people who were involved in all that back then.
https://www.quora.com/Why-do-t...

Also, I'm not seeing any evidence in the article that "hacking a satellite is surprisingly easy".

Re: I could find no evidence for the claim about W

[Nethead]

Also TT&C of spacecraft is the only time you can use encryption on amateur radio.

https://www.law.cornell.edu/cf...

LOL!

[sycodon]

So they are going to do a Windows Update in Orbit??

You just made the AC's point.

Re:LOL!

[zlives]

didn't Nasa just launch a WSUS server up there
https://www.nasa.gov/directora...

Re:LOL!

[Darinbob]

First off, the article is pure bullshit. There may be some Windows 95 components, but the satellites don't run off of Windows 95. These are embedded systems running small and tiny operating systems. They need to be light and with low power usage.

If you look at the article, there is one and only one place that says "Windows" or "Windows 95", and that's the intro paragraph. There are not references or annotations supporting this assertion. It's click-bait, and that makes Slashdot a click-bait enabler.

Re:LOL!

[Finallyjoined!!!]

It's probably Windows CE, which is even worse. Good luck with that one......

Re:LOL!

[rahvin112]

Click-bait enabler? Are you new here?

Re:LOL!

[scdeimos]

The only satellite I ever saw running Windows 95 was a Toshiba Satellite. I think TFA's author is confused.

Re:LOL!

[hcs_$reboot]

Or maybe windows 95 means windows 2095?

Re: Someone will tell us how...

[Obfuscant]

Fourth, it allows consumers to implement mitigation strategies and test them, while a solution is being formulated.

What is your proposed "mitigation strategy" to having a multi-ton, faster than sound communication satellite smashed onto the top of your head?

Is it "security by obscurity" when someone creates hypothetical methods of hacking into a system that they have zero knowledge about, and then announces how insecure those systems are?

Dont tell me hollywood got it right!

[140Mandak262Jamuna]

So the idea of uploading a virus to the satellite as the climax of a movie came from a real life satellite operator! Is that true?

Re:I could find no evidence for the claim about Wi

[sofla]

Seconded. Other than a mention Windows 95 in the opening paragraph (dare I say, it's click bait?), the story has nothing to do with Windows at all. It is primarily about the possibility and consequences of cyber attacks against satellites.

HBO!

[Joe_Dragon]

GOODEVENING HBO
FROM CAPTAIN MIDNIGHT
$12.95/MONTH ?
NO WAY !
  [SHOWTIME/MOVIE CHANNEL BEWARE!]

Oh come on

[Bruce+Perens]

Satellite control systems are meant to be able to reload the entire program memory of the satellite, bypassing any ROM that might be in the satellite if necessary, because things tend to fail under radiation. This means relatively small-scale logic to load ROM from an all-hardware modem and reset the CPU. This is done using a radio command with relatively simple encryption - cubesats often use EOR with a constant. The processors are silicon-on-insulator (because it is resistant to radiation-induced latch-up) and are not the modern ones you're used to. They don't run IP at this level.

Ridiculous.

There is no fucking way that a satellite is running win95. None. Didn't happen. Either the writer is an idiot, got trolled, or both. Nobody, and I repeat NOBODY is going to run a power hungry desktop OS on a power starved sat. Period.

And yes, we do know what to do if one gets hacked. We find the source of the transmission, and drop a JDAM on it. Problem solved, problem staying solved. These things aren't connected to the internet in some way where you just plug in an IP and hack the thing.

Trash headline, and someone should be ashamed and never post again.

"A malicious actor could fake their IP address.."

[acoustix]

"A malicious actor could fake their IP address, which gives information about a user's computer and its location."

Nope. Not even remotely accurate.

Re: Someone will tell us how...

[saloomy]

The mitigation strategy is for the satellite operator, not the general public.

If you want one.... go underground?

Also, it's not security through obscurity when someone makes a hypothetical attack vector. I was referencing the argument that we should not share security vulnerabilities.... reread the thread, dumbass.

I call bullshit.

[Mysticalfruit]

I can't imagine in my wildest shitty dreams that any satellite is running Windows 95.
One could argue that satellite are running operating systems that were developed in the same era as W95.
So exactly what radiation hardened CPU would be running W95?

Satellites are running realtime hardened operating systems (such as vxworks or rodos) that have very well defined modes of operation. Literally nothing I said in that last sentence would apply to windows 95.

Now granted, could some of these operating systems harbor vulnerabilities? Sure. Could these vulnerabilities be exploited to cause mayhem? Sure.

Re:I call bullshit.

[kenh]

Why can't satellites be running Windows? Wall-E the robot ran Mac OS? /LOL

Re: Someone will tell us how...

[Obfuscant]

The mitigation strategy is for the satellite operator, not the general public.

So there is no mitigation strategy for the consumers of satellite TV to deal with this alleged horrific security vulnerability. That's kind of the point. Someone else already pointed out the questionable idea of upgrading the OS for a satellite in orbit, I was just pointing to a different absurdity.

Also, it's not security through obscurity when someone makes a hypothetical attack vector.

No, in this case it is called "science fiction". Suspend your disbelief when reading this fictional account of how satellites are built and run and see how horrible the results could be! Be afraid! Be very, very afraid!

I was referencing the argument that we should not share security vulnerabilities....

Yes, I know. One reason you gave is because the consumer could create a mitigation strategy if they know about vulnerabilities. In this case, "go underground" isn't a viable strategy, but then, it is a completely fictional vulnerability to start with.

Hey, if satellites used consumer grade routers of a certain vintage and variety, they could be powned and told to crash into your house because you chased your next door neighbor's dog out of your backyard. He's a HAM! He's got ANTENNAS! He can point them at SATELLITES! He can TRANSMIT stuff you don' t understand! Are you worried? Will you stop chasing your neighbor's dog out of your backyard? Will you "go underground" to avoid the problem?

reread the thread, dumbass.

You needed to stoop to personal insult, it appears. Too bad.

You've seen too many hollywood movies

[kenh]

A malicious actor could fake their IP address, which gives information about a user's computer and its location.

What? IP Spoofing is something new to be afraid of, and somehow opens mystical doors into satellite control systems? No. I can set my computer's IP address to the same IP address as the workstation controlling a satellite, but that doesn't in any way afford me the ability to tap into the control stream for sattelites.

This person could then get access to the satellite's computer system, and manipulate where the satellite goes or what it does.

How? It doesn't just "happen", it's not like when the robbers go into a bathroom with a palmtop computer and a cord with two alligator clips and by carefully peel back the outer cover on CCTV cameras and can "take over" the CCTV surveillance system.

Alternatively, an actor could jam the satellite's radio transmissions with earth, essentially disabling it. The cost of such an attack could be huge.

Again, HOW? The ground control station is a non-trivial facility, you can't just hack one together with an SDR dongle and a raspberry pi.

This is a staggeringly simplistic view of satellite control systems - just slightly more sophisticated than the business plan of The Underpants Gnomes from Southpark:

1. Get lots of underpants
2. ...
3. Big Profits

Re:You've seen too many hollywood movies

[Brett+Buck]

IP spoofing will get you exactly fucking nowhere, because the command/TLM link doesn't use IP protocols, or anything like them, even for commercial satellites.

      TFS is the biggest pile of bullshit I have seen in a very long time, and the TFA is even worse. It is far beyond merely ridiculous.

          Brett

"Hacking a Satellite is Surprisingly Easy"?

[kenh]

No, no it isn't, any you have proven you have No Earthly Idea what you are talking about, put your pencil down and go home.

Re: I could find no evidence for the claim about W

[AHuxley]

Re "but the ones in orbit for decades might not be."
Its the way the NSA thought.
It was better to collect data in space for the NSA and have the speed of cheaper communications for the USA.
Why risk communications in space getting crypto that could fail or not work over many years stuck in every sat?
Thats a lot of extra work for the communications network in space. Encrypt end to end and pass the secure data from via a low cost communications sat network.
That allowed the US a place many new advanced sats that did not need secure and complex crypto tested in each sat. A saving in extra complexity and support at the time. The US could put that savings to other systems in the sat design and trust in crypto over the total network not just per sat.

The US also feared staff would sell, walk out with a set crypto design per sat and that would make all crypto in that sat network space junk.

Someone ...

[PPH]

... hacked into the Slashdot uplink and injected a stream of bullshit.

Meh

[Greyfox]

All the ones I looked at used some form of encryption (I saw a lot of One Time Pad ones) for their control channels. I don't think someone's going to drop $100M on getting a satellite to orbit without putting decent security on it.

Re:I could find no evidence for the claim about Wi

[UnknowingFool]

And you might want to read a dictionary before you feel that you should correct someone on their use of a word.
Definition of incredulous
1 : unwilling to admit or accept what is offered as true : not credulous : skeptical
2 : incredible
3 : expressing incredulity an incredulous stare

Get educated about embedded systems please!

[MichaelFlinn]

These have embedded systems in them, not a general-purpose operating system such as Windows 95 or any other OTS OS. Each satellite has a custom built and configured embedded system. While it may have a foundation of an older system, it is unique. This is why individuals need to educate themselves by supplementing their reading with a few books from experts in their field. People that built these things! As one individual pointed out, Win9x came out well after many of the GPS satellites were launched. Scarry enough as this may be - ATMs used to run OTS Windows 9x. They have since all wised up.... and again, use a customized system.

Re:I could find no evidence for the claim about Wi

[Actually,+I+do+RTFA]

Furthermore, Windows 95 has a timer wraparound bug that causes a crash every 49.7 days, and that bug wasn't found until the early 2000's

Bullshit. This bug was known in the 1990's.

Ground segment, Linux

[stooo]

I think they talk of ground segment systems.
Btw. the biggest actual man-made satellite runs on Linux :
https://training.linuxfoundati...

Why is this garbage any where near Slashdot?

[Xargle]

IP address spoofing to take over satellites! It's easy! Windows 95! *facepalm*

Those satellites all crashed after 49.7 days

[tommeke100]

Windows 95, suuuuuuure .....

Re:I could find no evidence for the claim about Wi

[clovis]

That's interesting. I would like to see some evidence.

Re:I could find no evidence for the claim about Wi

[Actually,+I+do+RTFA]

How would you expect to see evidence? Unfortunately, things from the 90's are primarily aged off the internet. I mean, I doubt a major paper (the only things I can think of still stretching back that far) covered it.

Re:I could find no evidence for the claim about Wi

[clovis]

Found it! Q216641
On the wayback machine:
http://support.microsoft.com/s...

It's from May 1999, but I think the bug was found in February.
That does indeed count as being in the 1990's. I suppose it didn't get into popular press until after y2k because, well y2k.
I used to do back-end Win95 support for Microsoft (among other things), but had quit before 1999, so that's my excuse for thinking it came out after y2k.

Fake news. Move along citizens.

[fygment]

Article makes no sense. Satellite resources are too constrained to be using something as bloated as Win95 OS. Possibly some ground stations are using win95 but certainly not for anything mission critical. And anything that involves jamming up or moving a incredibly expensive item like a satellite is mission critical. So, fake news, uneducated reporter, whatever; this is not a real thing.

Re:I could find no evidence for the claim about Wi

[Actually,+I+do+RTFA]

Ah! Thanks for seeking it out. And no worries- ,y timelines from ~20 years ago are also fuzzy.

I wanted build off what you said and try to explain why I was so sure it was in the '90's, but I cannot even recall that!