Iran tricked U.S. spy drone into landing in country, report says
Electronic warfare experts used GPS spoofing techniques to snag drone, Christian Science Monitor says
Computerworld - The U.S. RQ-170 Sentinel spy drone that was recently captured and displayed by Iranian authorities may have been tricked into landing in that country after being electronically ambushed.
An unconfirmed report in the Christian Science Monitor Thursday quotes an unnamed Iranian engineer as saying that electronic warfare experts in the country were able to cut off the drone's communications links and reconfigure its GPS coordinates to trick it into landing in Iran.
The engineer was described as someone working for an Iranian team that is engaged in trying to glean information from the drone.
The techniques used to attack the drone were developed by reverse-engineering older U.S. drones that were either captured or shot down in recent years, the engineer is quoted as saying in the Monitor report. The attack also took advantage of weaknesses in the drone's navigation system to spoof its landing coordinates and bring it down on Iranian territory.
"The GPS navigation is the weakest point," the Iranian engineer is quoted as telling the Monitor. "By putting noise [jamming] on the communications, you force the bird into autopilot. This is where the bird loses its brain."
According to the Monitor, the GPS spoofing techniques fooled the drone into "landing" at a U.S. military base in Kandahar, Afghanistan, while it was actually landing inside Iran. The drone apparently landed precisely where the Iranians wanted it to without their having to crack remote-control signals and communications from the drone's control center.
The Jane's website describes the RQ-170 Sentinel as an unmanned aerial vehicle manufactured by Lockheed Martin for the U.S. Air Force.
The Air Force acknowledged the existence of the drone in December 2009. However, it appears to have been around since at least 2007 based on unofficial photographs of the vehicle taken in Kandahar, according to Jane's.
Ira Winkler, president of the Internet Security Advisors Group and a Computerworld columnist, said the attack as described sounds plausible. "I saw other reports saying that there was a known vulnerability," that was exploited, Winkler said. "However there are a couple of things to consider that might not involve direct hacking of the drones.
"For example, if you know where a drone is, and you can beam a stronger GPS signal at the drone than it would get from a satellite, it would pick up the fake signal and think it is somewhere else. If signals arent encrypted, the people with the strongest transmitter win," he said.
If the drone was captured as described, it wouldn't be the first time that a U.S. drone has been attacked in a similar fashion.
Two years ago, militants in Iraq and Afghanistan intercepted live video feeds from unmanned U.S. Predator drones using $26 off-the-shelf software called SkyGrabber made by a Russian company.
While there was little evidence that militants were able to gain control of the drones, the interception could have given them vital information on targets under U.S. surveillance. In that case, U.S. officials apparently knew about the possibility of such interception for years but did little to encrypt the data streams.
Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at @jaivijayan or subscribe to Jaikumar's RSS feed . His e-mail address is firstname.lastname@example.org.
- Lawmaker pushes consumer notification bill in wake of Carrier IQ concerns
- Goodbye 2011 ... What a year!
- Sprint disables Carrier IQ software on its handsets
- Iran tricked U.S. spy drone into landing in country, report says
- FBI never sought Carrier IQ data, director says
- Carrier IQ moves to allay fears of its tracking software
- FBI rejects FOIA request for Carrier IQ info
- Google's Schmidt calls Carrier IQ software a keylogger
- Carrier IQ downplays 2010 patent request
- 8 companies hit with lawsuit over Carrier IQ software
Read more about Security in Computerworld's Security Topic Center.
- Enable secure remote access to 3D data without sacrificing visual perfomance Design and manufacturing companies must adapt quickly to the demands of an increasingly global and competitive economy. To speed time to market for...
- Virtually Delivered High Performance 3D Graphics "A picture is worth a thousand words." That old phrase is as true today as it ever was. Pictures (i.e., those with heavy...
- Best Practices for Securing Hadoop Historically, Apache Hadoop has provided limited security capabilities. To protect sensitive data being stored and analyzed in Hadoop, security architects should use a...
- Top Tips for Securing Big Data Environments: Why Big Data Doesn't Have to Mean Big Security Challenges Organizations must come to terms with the security challenges they introduce. As big data environments ingest more data, organizations will face significant risks...
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities. All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!