This page has been archived and commenting is disabled.
Hacker Finds Way To "Skyjack" And Zombify Drones
An American hacker has found a way to hijack consumer drones for personal use and remotely control their flights. As AlJazeera reports, Samy Kamkar exposed security holes in the AR.Drone made by Parrot, one of the leading manufacturers of commercial drones.
I've released SkyJack, a RasPi drone that seeks out and hacks drones, turns them into zombie drones that you control. http://t.co/o3VVtKpLZp
— Samy Kamkar (@samykamkar) December 3, 2013
With tens of thousands of drones expected in US airspace in the next few years (including Amazon PrimeAir drones), Kamkar's announcement raises considerable concerns of what could be possible.
The video below shows Kamkar explaining how, using a Parrot drone, a $35 Raspberry Pi computer, a WiFi transmitter, and some technical expertise, he managed to 'skyjack' the drone.
As Al Jazeera notes, commentary on this 'hack' is mixed with some expressing hope that it will encourage greater security developments and others eschewing his efforts as "toy"-based and not a problem for commercial drones... Time will tell of course...
Didn't they say the same about the NSA website before it was hacked? Seems to us like the consequences here are a little larger...
»
- 11335 reads
- Printer-friendly version
- Send to friend
- advertisements -
One more reason to ban drones over America.
FOR EVERYONE, INCLUDING GOVERNMENT AND COPS.
Yes ban something because it can be used to harm. Now where have I heard that argument?
I get what you are saying but come on, drones are worthless unless you want to spy on someone or kill someone.
Ban them for everybody.
Tens of thousands of drones flying over your head, YOU ARE THE VICTIM when they have a failure and they fall on your head or spy on you or kill you.
Give me one GOOD use of drones... and don't tell me delivering packages.
Killing people (according to the gub/official definition of 'good').
And by people you mean peasants like you by the government.
Easy Trigger, he's agreeing with you.
I was sarc, but lolmao is correct. There is absolutely no use for drones other than emergency supplies deliveries. All other uses are evil, hubristic, or both.
In addition to bird shit and pinecones, I gotta watch out for falling drones too? Fuck that.
Oh hell, I was trying to reply to lolmao500 there, in support of your comment. Sorry about that Skateboarder.
That's what I get for typing before the second cup of coffee.
I don't want to see those damn drones up there either.
I hacked a U.S. military drone last night, had it pick up and deliver a pizza and 6 pack, and made it wash & wax my vehicle yesterday.
Good stuff.
"AR.Drone made by Parrot, one of the leading manufacturers of commercial drones."
Bullshit... A.R. drone is not a commercial drone. It is a toy.
And of course he's using aircrack-ng library. This assumes that your continental crossing drones are using consumer 802.11G lol. Don't get me wrong it's a neat proof of concept. But no 100lb drone tooling around houses is going to be controlled via wifi. Better yet fit you drone with an internal terrain mapping computer that doesn't need external control. And if you do need to telecommand it, use a secure link for god sakes.
http://www.zerohedge.com/news/2012-10-09/uncle-sam-prepares-unleash-3000...
Well, that didn't take long...
Other drones may use GPS for location and altitude. Those can be caused to navigate to false GPS signals transmitted to it.
Oh no apologies man, I got your original comment - was just adding to it is all.
Nothing is more evil than insisting upon empowering society's criminals with the mandate of banning (or doing) anything.
As always, the state is merely the most organized form of crime.
He's not just any Hacker....
http://en.wikipedia.org/wiki/Samy_Kamkar
I didn't realize "Whistleblower" was a profession.
OT for BTC "stealthers", read the Mobile Research section. Doing BTC at Starbucks hotspots may not be as stealthy as you think.
Yes, persecute and imprison your brightest minds. Surely this will end well.
The kid just figured out in his basement what the high perps used on 9/11.
"Somebody set us up the drone."
"All your Amazon Parcel are belong to us." - Cats
"Die, Jedi scum! What did I just say?!"
"Give me one GOOD use of drones..."
https://vimeo.com/77476282
I thought you were going to post this...
Robo Love
"Give me one GOOD use of drones..."
Ahhh... filming a topless babe nextdoor sunbathing?
NSA approves this message.
Unfortunately, it is only a small step from "Search and Rescue" to "Search and Destroy".
I think many here are confusing "drone" with "UAS." In the haste to cast aside all notions of "drones", much like anyone with a Krugerrand is a conspiracy theorist, many are overlooking civilian uses. It's a HUGE leap from SAR to SADestroy. We're talking LiPo batteries and 1400kV motors. Let me know how you plan to weaponize something that weighs 1-2 kilos.
Killing drones are HUGE compared to these.
Not true.
http://www.zerohedge.com/news/guest-post-boots-ground-fukushima-japan#co...
Thanks, never seen that. We can kamakaze that fucker if y'all don't continue to push the FAA to force us underground. You know THEY aren't going to stop, so unless you plan to throw rocks at them or unwisely shoot at them straight up, you should give serious consideration to your brothers RC skillz and pontentiality. I assure you, no civilian is spying thru a 480 res board-cam or going to get remotely close to weaponizing them.
Easy, place a 1/4kg Semtex payload on it. Your ingenuity is low.
I guess we just aren't that devious. We like our expensive stuff to return to us. Regardless of this argument, check it out. We have a lot of fun.
http://fpvlab.com/forums/forum.php
Or just YouTube "FPV"
Poison dart should do it.
And I thought it was going to be a link to a mini-drone getting video of the hot Sorority girls nude sunbathing...
I will give you a reason:
killing the innocents in the name of liberty.
"Give me one GOOD use of drones..."
Entertainment?
http://www.youtube.com/watch?v=SNPJMk2fgJU
"Give me one GOOD use of drones... and don't tell me delivering packages"
- firefighting
- irrigating/springkling crops
- weather probes
- relay transmitters
- disaster response (seeking for survivors)
- and yes, delivering packages :P
but still you can hide in your cave you'll be safe I promise
I wish there was an app that cluld turn everyone in Congress, the White Hut and the Pentagon (useless wars & useless weapons systems when they don't defend The Constitution) into Zombies.
You go, kid.
So that's what he was making in my basement all this time. I think I'll raise his rent !
When the CIA remote bombs your house into a smoldering crater because there is terrorist activity going on there, your insurance carrier won't pay out.
We applaud your sacrifice for the good of the peoples' revolution!
GodDamn that Fine Print !
Samy for president 2016. At least he has some hard skills...
Yeah, no way anyone could hack a highly secure military drone...
using the same principle of capturing/sending packets, could you not capture the instructions, and re-send them multiple times? While this wouldn't give you real control, and you wouldn't really know what you're doing, you could confuse the drone, and possibly even crash its OS with a "denial of service"-type attack?
Or if you're going to go to the trouble of making a drone that can go as high as the big boys and keep up with them, you might as well just arm it with a big fucking gun and shoot them down.
Less hassle than denial of service.
Well, I'm not understanding why a host drone is required in the first place. You should be able to accomplish all the same things from the ground with a wifi transmitter...
kinda like so:
http://www.wired.com/dangerroom/2009/12/insurgents-intercept-drone-video-in-king-sized-security-breach/
I think his reasoning was that his host drone could do a better job at cramming more de-auth packets at the targets better than a ground station. This also allows you to remain somewhat anonymous. If you're deauthing from some powerful ground station it's like putting a big red blinking light on your location.
Tell that to the Iranians!
Cheers to you, Samy! Fly one into Valerie Jarretts office.
Fly two into her office. Just to be sure.
“Nuke the entire site from orbit--it’s the only way to be sure”
Fuckin' A!
Terrorist
Dear Junkers,
Please report to the nearest Fusion Center for questioning. Thank you for your compliance.
DHS
not everyone gets your sarcasm. this guy does seem to hate america though... and his hair is a bit too long.
This is why having a robotisized army is a bad idea, any wireless tech can be hacked and turned against you.
Actually, they're designed that way intentionally...
Maybe Applebees can have Waiter drones that send us our lunch paid for with Bitcoins.
I miss the good ole days of 2011.
I wonder if those ordering systems are wireless and their packets can be intercepted...
If so, I'd definitely cancel some order for neighboring patrons, and order salads instead.
Enough with the fucking toe fungus ads! I'm eating here.
Well, someone's looked up how to get rid of it on your pooter.
Soak them in vinegar.
Could they drone strike white house once hacked killed by killers own tool
The US government and their corporate masters are forcing us to destroy them outright, as a matter of survival.
I don't know about anyone else but I am sooooo looking forward to this.
No sarc.
How? The only revolution I see working is on an individual basis.
You just said it. Think of government as the elephant trying to stamp out tiny biting ants. The more the elephant tries to stamp them out, the more they diffuse and take advantage of being tiny biting ants, until the probability of killing many ants in a bunch is much lower because they are spread wider than the foot, and the elephant stamps harder and more furiously, and carelessly, which results in what few ants it can target not being killed but rather pressed into the dirt a little bit, because the elephant is pushed past optimal energy expenditure and tires, and grows sloppy, and does not think but rather stamps angrily ... you see?
Never push a metaphor too far ...
The elephant stepping on us has.....
Spent years and billions perfecting the the elimination of ants.
For all you techy people.
No need to wait for new technology.
This item can be built with available plans and materials.
gizmodo.com/.../this-emp-cannon-stops-cars-almost-instantly
In other UH OH news...
http://www.timesofisrael.com/hezbollah-will-retaliate-for-hit-on-its-com...
‘Hezbollah will retaliate for hit on its commander’
Hezbollah will retaliate against Israel, which it hold responsible for Wednesday morning’s assassination of Hassan al-Laqis, a top operative in the organization, a Lebanese newspaper reported Thursday.
The editor of the Al-Akhbar daily, Ibrahim al-Amin, who is said to be close the Hezbollah leadership, blamed Israel for the hit in an editorial, insinuating that it was Israel’s response to the recent nuclear deal between Iran and the West.
Amin argued that the lack of a Syrian response to alleged Israeli strikes on its territory led Jerusalem to believe it could get away with the assassination.
However, experts interviewed by the Lebanese newspaper The Daily Star were split over whether Hezbollah would strike at Israel, with one arguing that it would not be in the organization’s interest to retaliate now.
Both Hezbollah and its sponsor states, Iran and Syria, accused Israel of the slaying.
How long before the Amazon drones are hacked and zombified?
"We're sorry, but your order was hijacked." - Amazon
They'll be plenty to choose from.
The thieves will all have drones waiting to pick and transport all those Amazon gifts.
All your Amazon deliveries are ourz.
I believe that the proper phrasing is "All your Amazon deliveries are belong to us."
[quote]
What happen?
Somebody set up us the bomb!
We get signal:
Gentlemen, all your base are belong to us
you are on the way to destruction
what you say!
Give cones change the machine!
You have no chance to survive make your time
take off every sig!
Link a fast ether lord fucking net ascending
for great justice.
[/quote]
Reminds me when I was a kid and I picked up a R/C remote at a yard sale.
For a few laughs I'd head over to a bay with some steep cliffs where glider models were flown.
I'd hide in the bushes, smoke a joint and take control of them intermittently by matching the channel frequency per the pilots flag.
It was hysterical watching these guys resume control of their out of control dive bombs and barrel rolls. Accidently crashed a few though. Felt bad about that.
http://www.youtube.com/watch?v=T5q_9_JGUFM
Pot can make people violent and "devilish."
Already covered by "Reefer Madness!"
Technology, there always a way to counter. Usually rather simple ways.
Plenty of future Amazon and delivery drones to swipe.
Make a simple drone to get over the top of another one and disable it's propellers, then transport it and it's contents to you.
Rather simpler ways of disabling drones. Even military ones. Create your own to get behind one and shoot out it's engine and electronics. Then steal the weapons and contents.
Or just be a smart Iranian IT goof and hack the US military drone to land at your airport.
Gosh, I wonder if I'm the first to think of that idea?
(PS and then they sent all the tschnology to China, as per Wired or somebody else... no surprise)
Yeah, the use of the word "drone" makes it sound much more complicated than it really is. At the end of the day all these things are just expensive remote control toys. Throw money at it and anything can be cracked.
No one could hack those tethered planes I flew in the 1950s. I gave up because I kept getting dizzy.
Nah, this seems like more fun
http://bearingarms.com/barrett-drone-killer-rifle-on-display-at-modern-d...
Meanwhile, 10-Year Treasury almost to 2.85%.
C'mon 3%!!!
C'mon 4%!!!
Genius!
I'm not surprised. The MWAG has always liked operating from the "prone" position.
Wow! Nobody could have seen this one coming.
This is only hackable because the ARParrot is controlled via mobile device. Even still, those are toys with serious lag that you wouldn't take out over a few hundred yards. Most civilian long range UAS craft are controlled via UHF frequency hopping Tx. Those can suffer dropouts but not hijiacked. A flip of the RTH (return to home) switch will make the craft return back to launch area.
Unless you think TPTB are going to suddenly stop using these things to spy on you, then it's time to get with the programming and fight fire with fire. Get thee FPV and watch the watchers.
Please excuse the ignorance...
FPV?
First Person View. Steep learning curve but for about $1k you can fly around viewing the world thru a live linked board-cam on an RC craft. With a lot of trial and error you can go miles and miles. Most fun you can have with you pants on.
Droppin some knowledge for those who dare. Warning, it's fucking great.
http://fpvlab.com/forums/forum.php
He better watch out, or he might face the same fate as Barnaby Jack.
You know, the guy who show you could remotely hack pacemakers and insulin pumps.
For every technology there is a monkey wrench.
Congress needs to outlaw ALL drones! Did we learn nothing from Terminator.
I couldn't decide what I wanted for Christmas (besides silver)...until now!
Compiling short list of deserving droning targets.
I love all these comments. Ten bucks says you all vote in the next election.
From Wiki-pedia
"In early 2011, Kamkar joined the Board of Directors of brave new software a non-profit organization originally funded by a multimillion dollar US State Dept grant. The nonprofit is responsible for creating Uproxy with the University of Wahington and Google Ideas, a browser extension intended to allow users in repressive regimes access the Internet without being monitored. The nonprofit also created Lantern, a network designed to circumvent Internet censorship and defeat the suppression of digital information and freedom of speech"
Now I've heard everything, our internet be saved. These apps will be issued under the NSA 'they'll never take our freeedommm' label, a not-for-profit organization.
Releasing code is a great way to get the hacker public to solve and test your systems and defenses.
http://haiku.nytimes.com
http://www.nsahaiku.net
skyjack samy hacks,
zombie drones en-masse attack;
zerohedge ... thus stack.
This is front page? Some gumbah hijacks a toy UAV? Gosh, I fly mine in my handy Faraday cage only. I went to the end of the line to spare myself the indignity of reading the resident pantloads wasting digital currency.