Eye-opening articles on a the ability of a hacker to gain control of an auto-piloted aircraft. Automated Dependent Surveillance-Broadcast (ADS-B) and Aircraft Communications Addressing and Reporting System (ACARS) protocols have no security and the hacker uses them to find targets, exploit the aircraft’s onboard computer, and break in.
Here are some of the functions Teso showed to the HITBSecConf Amsterdam audience:
- Please go here: A way of interacting with the plane where the user can dynamically tap locations on the map and change the plane’s course.
- Define area: Set detailed filters related to the airplane, for example activate something when a plane is in the area of X kilometers or when it starts flying on a predefined altitude.
- Visit ground: Crash the airplane.
- Kiss off: Remove itself from the system.
- Be punckish: A theatric way of alerting the pilots that something is seriously wrong – lights start flashing and alarms start buzzing.
Scary.