Flight Path Compromised: New Research Reveals Drone Vulnerability
SECURITY MANAGEMENT MAGAZINE | What if you could physically manipulate a high-quality drone to corrupt its memory, gain control of it, and potentially leak its data? Security research firm IOActive put that theory to the test earlier this year when it conducted an experiment on DJI’s Mavic Pro that was detailed in a whitepaper published Monday.
Risky Biz News: LockBit gang made $91 million from US attacks
Risky Biz News | Drone security research: New research from IOActive shows that unmanned aerial vehicles are vulnerable to electromagnetic fault injection (EMFI) attacks that can allow a threat actor to run malicious code even if the drone is running up-to-date firmware. The attack was successfully tested against a DJI Mavic Pro drone, but in theory, it should work on other vendors and models as well.
New EMFI Attack Against Drones Leads to Complete Take Over
gbhackers.com | Based on the recent reports by IOActive, Drones, also called Unmanned Aerial Vehicles (UAVs), are vulnerable to code injection, which would result in gaining complete access to the firmware and core functionality of the drone. Drones have been used in many industries like aviation, agriculture, and law enforcement. They are often operated remotely, which offers an attack surface for threat actors to gain control over them.
US warns of huge cyber-espionage campaign, and other cybersecurity news to know this month
weforum.org | This monthly round-up brings you key cybersecurity stories from the past month. Top cybersecurity news: US faces huge cyber-espionage campaign; Big British firms hit by cyberattacks on outsourcing suppliers; Highest AI cyberthreat will stem from deep fakes, says Microsoft’s Brad Smith.
New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones
securityweek.com | New research shows the potential of electromagnetic fault injection (EMFI) attacks against unmanned aerial vehicles, with experts showing how drones that don’t have any known vulnerabilities could be hacked. The research was conducted by IOActive, a company specializing in cybersecurity research and assessments. The security firm previously found vulnerabilities affecting cars, ships, Boeing and other airplanes, industrial control systems, communication protocols, and operating systems.