Christiaan008 asked:

Speaker: RENDERMAN CHIEF RESEARCHER What happens when a hacker gets bored and starts looking at an aircraft tracking systems? This talk will look at ADS-B (A…

Advertisement
Share →

20 Responses to DEFCON 20: Hacker + Airplanes = No Good Can Come Of This

  1. Sionyn Jones says:

    More silly Security Theatre

    because somewhere some silly disillusion-al policy maker has been watching
    too much csi, the morons at airport security now require you turn your
    electronic devices on to see if they work presumingly testing to see if
    they don’t conceal a bomb.

    Because you can’t stick a bomb inside a functioning laptop?

    A functioning laptop (and especially its battery) IS already a bomb. It
    only needs minimal modifications to explode and cause serious damage. it
    wouldn’t take much to turn the lithium in a laptop into a weapon. There’s a
    lot in there and lithium is quite reactive.
    Put it in water – instant hydrogen high energy density + thermal runway and
    your in for a real bad day.

    Whats more i willing to bet a flaw here that is easy to conceal a bomb
    inside a device replacing the battery for a explosive, whats more this can
    easily be done whitest sill having the device in working order.

    I even think something like a mercury fulminate would pass a xray test if
    it were disguised as a battery inside a tablet or smart phone thanks to
    having a similar density to a lithium battery, that also not forgetting
    that these airport secuirty staff are poorly trained to realy on a machine
    to tell them what they have infort of them, all you have to do is fool the
    machine.

    f I were in charge of flight security I’d be more concerned about this: DEFCON
    20: Hacker + Airplanes = No Good Can Come Of This

  2. Patchuchan says:

    This is why planes still have pilots on them even though in theory they
    could have been unmanned since the mid 90s.
    If the GPS or TCAS is lost and it sometimes happens even without meddling
    by hackers they can still fly the aircraft via instruments.

  3. pinkdispatcher says:

    TCAS does neither give left/right guidance (only climb/descent) nor is it
    linked to the autopilot in any aircraft. Our research group, working with
    pilots, air traffic controllers and avionics developers has done a lot
    research on these systems. The information from the video is simply false.

  4. Jim Lee says:

    “There are MF’in hackers on this MF’in plane!”

  5. kekejojo1212 says:

    Really interesting talk. My intuition tells me that an attack on this
    system would have to be a one-time event, or at least a short period of
    effectiveness. Also, pilots can communicate via radio at the speed of
    light. With the safety margins in place for distance between aircraft, I
    dont see how besides causing trouble and maybe some injured unbuckled
    passengers from a sharp dive, this could actually make happen what everyone
    is thinking: two planes colliding into each other or a building. The
    scariest part for me honestly was when you remove the human from the
    equation i.e that autopilot. If the autopilot will indeed listen to spoofed
    data, that is scary indeed.

  6. zombieregime says:

    aviation nerd here. a word about the GPS jamming: if you jam GPS the
    aircraft can still use ground based beacon stations for navigation to an
    airport(which in fairness can also be jammed). still not a good thing to
    do, just something to make your next flight a little less stressful.

  7. SilverSurferFTW says:

    Malaisian Airlines must watch this video….lol

  8. Viper says:

    thumbs up if you were receiving ADSB while you were watching this video

  9. StYxXx says:

    GPS receivers don’t send GPS signals. They only receive. He should know
    such basic stuff. So if drug dealers really want to track their packets,
    they might receive gps signals and send those information for example by
    using mobile networks (I guess that’s the most common way) but never by
    using the gps satelites *smh*. No GPS signals get disturbed this way. So I
    don’t know what the UK police recorded, but this is bullshit. 

  10. drezster says:

    Only 57k views? 

  11. Jeff Wilde says:

    a person can use this data with drone internicks i phone has a gps app

  12. phuk gugle says:

    oh…dear

  13. PWgamestuff says:

    I don’t want to watch this because I’ll never get on a plane again.

  14. Ryan Brooks says:

    Scary. I never realized that our air traffic control system was so
    vulnerable– this makes it sound like all it takes is a weekend or two, and
    then anyone can spoof ATC data.

  15. DrSQUIRRELBOY12 says:

    So basically in 2020 a major terrorist orginiation would be able to hack
    the ATC network, jamm comms, create false flights, and cripple the air
    fleet and thus crippling the economy. Unless preventative actions are
    taken.

  16. otakucode says:

    One day we will see a real-life supervillain. Exploiting the disgustingly
    insecure systems all around us and causing massive tragedy. Maybe then
    people will be willing to pay a few bucks to hire real security
    professionals to design their systems.

  17. HackITGuys says:

    A very disturbing talk on how airplane data traffic could be tampered with
    and how it is vulnerable.

  18. M Lundgren says:

    Welcome abort this flight. ETA -4 Hour >Lolz

  19. yourb nameb says:

    I’m just going to go sit in the corner holding my knees and hyperventilate
    for minute after watching this one 

  20. slakmansf says:

    Interesting presentation – sort of, not too sure what the issue is though.
    Where is the safety issue with being able to access read-only data? Notice
    I said safety – not security – since in the aviation safety world the two
    are not necessarily linked together. There are multiple sources that are
    required and there is no single source permitted. The FAA & Eurocontrol
    have been working on NextGen & SESAR for quite some time now. Have a look
    at ARP4754A, ARP4761 to get an idea of how systems are developed, tested
    and certified, also check out pages 149-155 of Aviation Security
    Engineering – google books is a good place to look. 😉

    As you stated, you’re not a pilot, do not work in ATC, and are clearly not
    involved in aviation security engineering either, but don’t worry, those of
    us in the industry don’t hold that against you – we look forward to these
    humorous presentation every year. 😉 

Leave a Reply

Your email address will not be published. Required fields are marked *

* Copy This Password *

* Type Or Paste Password Here *

Looking for something?

Use the form below to search the site:


Still not finding what you're looking for? Drop us a note so we can take care of it!

Set your Twitter account name in your settings to use the TwitterBar Section.