US Drones are infected by a virus which includes a keylogger. Is there anyone who understands or could explain the statement in the Wired article that they ‘think it is benign?’
Let us know what you think.
Center of Excellence
Capella has been designated a National Center of Academic Excellence in Information Assurance Education (CAEIAE) by the National Security Agency and the U.S. Department of Homeland Security. Capella’s information security curriculum meets the NSA Committee on National Security Systems standards 4011, 4013, 4014.
CNSS Certification
The NSA’s Information Assurance Courseware Evaluation (IACE) Review Committee has validated that Capella’s information security curriculum meets the Committee on National Security Systems (CNSS) National Standards 4011, 4013. Additional courses are needed for 4014. Learn what it means to a Capella learner.
This entry was posted in Current Topics, Security and tagged Capella University, Information Assurance and Security. Bookmark the permalink.
3 Comments
The statement is vague on purpose. These systems are mission critical and (highly) classified. So the authors article can not legally publish anything substantive about this incident without being considered another Julian Assange (wikileaks).
It could be that they believe its benign because:
*They had onsite classified personel search the decompiled code an they determined that:
*the infection is not aimed like “STUXNET”
*Or the infection is aimed and a rootkit is burned to the bios
of the birds and the controllers and they can’t tell anyone! Oh the expense! the loss of advantage! Come on, the military has known about various security weaknesses, like the unencrypted video feed on the drones, for decades. Yet change is slow. These guys hadn’t even reported the situation to the IT dept yet so who knows what they know, what was installed by whom and which then turned into a CYA meeting…. of course it must be benign. We have increased your chocolate ration to 2g a week.
This is the result of what happens when we erode the “air gap” between what should be a closed network and the “unwashed” vastness that is the Internet. I’m sure that those pilots at Creech Airbase were doing more than just loading maps and other data into thier machines (mp3′s are a very lilkey thing that were put on there from my guess) and possibly using personal thumb drives. How do you get around security systems you ask? By ignoring them or going around them. The best security systems means nothing if you don’t secure the people who use them.