Hacking Satellites with $300 Worth of TV Gear
Вставка
- Опубліковано 4 лип 2024
- This student discovered that satellite security isn’t as stable as one may expect. So he decided to hack one.
Subscribe here: freeth.ink/coded-satellites
Satellites are used for a wide variety of activities that most of us don't even recognize. From mobile phone networks to GPS capabilities, to a variety of IoT devices and operation of electrical grids, satellites are in control. Our global interconnectedness is deeply dependent on satellites - and they aren't as secure as we might expect them to be.
An exploitation of satellites’ weaknesses by hackers is not only possible, it’s probable. The US Air Force held a virtual version of the annual competition in 2020 at DEF CON, challenging hackers to reverse-engineer ground-based and on-orbit satellite system components to expose planted “flags” - or vulnerable software codes.
The idea is that the best defense can result in proactive offense. For researchers like James Pavur, a Rhodes Scholar and PhD candidate at Oxford University who focuses on satellite security, it's become his life's work to exploit and report potential vulnerabilities before hackers have the chance.
See the full article on satellite security here: www.freethink.com/videos/sate...
We created this story in partnership with Tomorrow Unlocked. Watch more stories of technology creating a better future on the Tomorrow Unlocked channel: freeth.ink/3oQe3IF
Up Next, Hacking Banks For Money: • Hacking Banks For Money
Follow Freethink.
-Facebook: / freethinkmedia
-Twitter: / freethinkmedia
-Instagram: / freethink
-Website: www.freethink.com
Join the Freethink forum: / freethinkforum - Наука та технологія
![Lp. Последняя Реальность #97 ЧЁРНАЯ МАТЕРИЯ [Анти Скинт] • Майнкрафт](http://i.ytimg.com/vi/k4MjXCzKsYw/mqdefault.jpg)
How do you think we should improve cybersecurity?
screw too much security it's boring.
1. Start your projects with security concerns included in the project plan. This is called "security by design"
2. Include a security architect that can advise and analyze the security profile of projects. This goes beyond paper security and includes actual security reviews and security tests.
3. Pay for the cost of security by design.
4. Include penetration testing of all system components which include the people and processes operating a system.
No, stuff like this is fun
security through obscurity
more time DLP and encryption
I was hoping for the step-by-step process to hack a satellite.
Same...
You need to go watch his defcon talk for that
ua-cam.com/video/ku0Q_Wey4K0/v-deo.html
Yea I was just searching for something…..
was looking for the same...
You won't, because he hasn't. 2048 bit encryption is nearly impossible.
He looks like the most disciplined and down-to-earth hacker
Def the nerdiest though and it's a complement.
@Joe- Biden duh, that's a complement, coming from a fellow nerd. Be yourself pussy, nothing less in being a nerd.
Yeah, be afraid or he will let all hell break loose and won't even flinch
bhai ye ladka hai ldki?
@@PRASHANTKUMAR-sn2gs Ladka hi hoga na bhai
At 4:04 the dude can be seen writing python in vim, I noticed that line 18 is going to throw an 'IndentationError' because he appears to be trying to set the variable name target to a URL but prepended the line with 'def' as if it were a function.
We will relay this message, hopefully there's still time! 😉
Great eye!
haha so if a guy who cant code python can break a satellite we are screwed :D
Imagine using anything other than VS Code... Pitiful
Oh yeh I see that too ;)
"No system is safe" -MRX
aim for the impossible!!
whoami-You are a man of Culture i see
Wait, who am I wasn't german only :o
Because it's a German movie and I never thought about the fact that it got translated ^^
nevermind, it never got translated, the only available is the movie with english subtitle
Getting into an open air satellites that have no security and been built in 90s and 80s and served 20+ years is indeed a good job but remember there isn't much they can do to an old satellite in space.
Point is: users should protect their traffic (themselves as providers don't do it for them). They don't realise that their data is publically visible over entire continents.
what if they moved it to hit another satellite/object in orbit ?
Agree, most of this old satellite are for TV and radio broadcast, not for spying...... New satellite that are being placed in the orbit are much mo secure than those 20 years ago but still serving tv broadcast..
@@silverismoney they do not know words by means the satelites are controled from tower
This Coded series is great! I just wish they were several minutes longer and dug into the how!
So glad you like it! Thanks for the feedback, we are considering it going forward!
'How'🤣🤣
@@ram_bharosey what?
To put it short, it's just turning radio wave into computer bytes. So learn about radio waves and eletricmegnatic field and how they work, then learn how to turn into computer bytes and read it
Gamers have exploited every game ever released within hours of release. That's all you need to know to understand the scope of this problem, and how to address it. Once content (code) is released to the public, a diverse, creative, curious and intently driven community will pounce on it and quickly discover ways to exploit it.
The biggest issue with games now-a-days is people don't seem to care... Developers in particular because it is a business. They purposefully leave vulnerabilities ( example, allowing the client to dictate terms to the server when you should never trust client data... this is how people can be shot from across a solar system with a weapon which could never reach that far, instantly, and continuously because the server doesn't check the data and simply trusts. It is why speed hacks exist. It is why people can teleport, and more ).
So here is how it is a business....
Game is released, charge is $15 to $120 for the game. Game is intentionally left vulnerable. Scripters use basic logic, packet spoofing, or whatever to replicate actions and if the server accepts it, cheaters have a tool. People in the community get annoyed that day 1 there are people cheating. Developers vow to ban cheaters. Cheaters are found, easily, and typically given a month to cheat before the account is banned. So the cheater gets to play the game on a subscription model while legitimate players who want to enjoy the game and not ruin it for others pay a one time fee for a license.
Because the devs are being paid on 2 separate models based on cheater vs non-cheater, they do everything they can to keep that going. For instance, kicking cheaters for common cheats and telling the server about it ( Rust is an example where they kick people for 'fly hack' which can actually be triggered by standing on the very edge of a scrap helicopter as you can't board the helicopter even if you are on the same team, unless they allowed this, unless you are the owner. But you can stand on the very edge in the back and be airlifted out - this causes a false-positive ) making the community 'feel like' something is being done. The actual bans don't typically happen within days or weeks unless the cheater is blatantly doing it non-stop to the point where influential players are complaining. Then they get banned pretty quickly. Otherwise, infractions are added up and eventually the account is banned.
But, these cheaters typically by 10s of accounts when the game is on sale, or get it for pennies on the dollar from hacked accounts, credit card fraud, and more. So they don't care - they just create a new free account on the service, then cheat and play to ruin other peoples fun on a subscription model.
I am a developer myself, and I can't stand the state of the industry in this regard. I would never put this type of system into anything I work on. I would ban the cheater, log their hardware and every new account would be linked to it, along with other methods of tracking so they could create a thousand accounts and they wouldn't be able to be used and every account they try to login with ( with special conditions in place so they can't just hack someones account and get them banned permanently, etc... but they would then be temporarily blocked or some other mechanism to ensure innocent accounts can't be used in this regard ) would be blocked.
Speedhacking is easily detectable. Aimbots are incredibly simple to detect, especially if they are blatant. Aim assists are also easy to detect, but more difficult that straight up snap-to'ing. Packet spoofing is stupid easy to detect too. If you design a game and the logic, then you know what to expect and if something falls outside the bounds of what can be done, for instance a player attempting to teleport or claim they are on something solid when they aren't ( ie fly hacking ), etc.. can easily be prevented...
The goal is to have the server control and verify - but allow the client as much control as is reasonable. ie: Don't send the clients the full loot list, etc... when they are in range they can get data networked regarding things so they are far enough away it doesn't pop in ( ie just outside a door they are about to enter or could enter, etc.. ) but close enough that there is no major benefit... If the clients want to modify their money value - let them. It can act as a strike when the server sees the disconnect. All of that data can be tracked and used as evidence of cheating - obviously memory can fail so you wouldn't ban for something like that, when the client tries to use the money is when you can let them know about the money they have and fix the desync instead of 60 times per second for an unchanging value. Let them modify the memory data - although you could protect against that and if detected you could swap the data with a backup but that adds overheat... you could cause the game to crash - fun, then they'll just complain... so just let them, it won't matter especially if the server handles the data how it should. It just makes them see a big number and go - oh wow.... Let them edit their health and armor values too... it will only show the data on the hud and change the data they are seeing but it will not change when they perish, how much damage they take, etc.. because that's handled by the server when done properly...
So many devs send so much data every frame when it isn't necessary. They don't track time properly, etc.. They trust client data... they don't know when to let a client modify something and when not to - or they just allow it and let the client tell the server that there was a valid change.
I'm also not saying that Rust does this on purpose or to make money, but I'm stating it looks that way because of how long it takes to get people banned and it typically only happens within hours if an influencer reports the person non-stop or if the entire server is constantly reporting them, etc... most will gather info and do a bulk ban every month or so.... convenient...
!Save
That's different though. With basic public key cryptography you can make an unhackable satellite (assuming the private key isn't stolen from ground stations). With locally installed games, you can do whatever you want to decompile and mess with the game.
"diverse" lol
@@REALBanannaman Please explain your issue with "diverse."
Let me grab my satellite dish and laptop and hack into a satellite.
He left the part out when you get caught..which they can..you will go to prison
80s tv network satellites were wide open. I remember having a big dish in our back yard and equipment in the living room to tune the dish. my dad said he would watch football games from the raw feed with no commercials. Announcers would get into fights and threaten each other then a couple seconds later act like nothing happened “Aaand were back!” 😂
Great content. Security was the last thing engineers were thinking when these devices were built. The cold hard truth is the darkness of threats arise like a tsunami in the night with the spread of technology also comes it's shadowy unwanted guests. This was a great piece of work. Go team go.
Some dude in my country (Kenya) did this in 2015 but here in Africa, Almost no one cares
you guys still working on that spaceship?
when is it going to be finished 2079? im optimistic for 2090.
@@darkshadowsx5949 we're going to start prototype testing in 3090, so expect it to fly around 3150,and I'm being generous about this date .
I can't wait for starlink 😁😁🙂.
Yh I just thought about that, wouldn't it be bad if they can easily be hacked
Looks like a new hackathon challenge for Elon
Starlink been out
to re-enter the atmosphere 18 months after launch due to its extremely low orbit.
@@otfizy5774 yeah its been in open beta for a month (which is about when they commentated). i pre-ordered 2/11 and no dishy yet..
my internet is about as fast as a mail man traveling by horse, also the horse has a broken leg and the mail man is dead and being drug behind the horse.
(hughes net keeping 10+ year old internet communication technology going and claiming its "high speed" when it has 1000+ ms ping at less than 2Mb/s)
Let's try not to have these come falling out of the sky.
🙏 🚫 ☄️ 🛰️
I'm really excited for knowing someone like Hitecyberspace On Telegram.
I was surprised when my Commander Wilson Brown recommended you to us.
From Usa Army says Thanks
They would burn up. No Biggie. They are only harmful to themselves. And trashing space.
@@janetjackson8117 The use of linguistic obfuscation in scientific review matches somewhat.
@Mist boohoo.
Kids hacking space satellites sounds cool.. But they are not any ordinary kids... I can't even fix my broken speakers
It's literally the watch dogs 2 scene
That’s one way to actually be able to see live unedited footage
Did this 30+ years ago when we took over a TV sat and ran some video. Then a guy in a suit from Luxembourg came up on the second channel and asked us to stop. We did. Great evening it was.
It was all analogue then and there was no security at all. All we did was build the transmitter for the upload freq. hooked it up to a dish and buy lots of beer.
true story
True and factual
Max headroom exposed
These real life hackers would make excellent side characters in sci-fi movies. They could at least improvise lines and make them more believable.
dang, I knew you can download images from weather? satellites using this process, but I guess you can also intercept unencrypted passwords if you pick the right satellite
Very smart on the us Air Force to start this program. These “hackers” honestly are doing more to protect our country than most of our government officials ever could dream of doing . Thank you to everyone who is trying to improve our lives and make us more safe from the evil in this world.
YEh, the US military are wonderful. Nice how intelligence would not tell us who really took down 9-11 and we were in AFghanistan for twenty years and attacked iraq. But hey, gotta respect the military. you are damn stupid, bro. WE have not been in any danger since WW2, but have attacked about fifty nations since then.
If Innocent hacker had a face
This is nothing new. I’ve been intercepting weather data and imagery from us and Russian satellites for over a decade. Also doing this with consumer grade equipment is not as easy as the video makes it seem.
NOAA 18,19,20 Weather satellites?
Okay hackerman
@@jeremiahblessing3891 yup. All their frequencies are publicly available as well as the meteor M2 rus satellite.
I'm really excited for knowing someone like Hitecyberspace On Telegram.
I was surprised when my Commander Wilson Brown recommended you to us.
From Usa Army says Thanks.
@@Jigamanx2 how did you learn
We need more episodes 😢😢
Listening to radio signals is one of the most basic forms of hacking but does take some skills and knowledge to do it right and the people with expert skills will blow your mind.
This kind of video helps remove the taboo around this sort of thing by explaining it, knowledge is key
Revenge of the Nerds cool movie... thanks for this and we need these type of individuals in the vid to make us more aware.. use your skills for good things guys.
This video somehow reminded me of how I couldn't receive many TV stations in the current house I live in as the previous one.
Those two guys staring up at the sky to get the corrds
So 35 dollars taxes, can there be enough write offs to take all income taxes away.
I'm really excited for knowing someone like Hitecyberspace On Telegram.
I was surprised when my Commander Wilson Brown recommended you to us.
From Usa Army says Thanks.
5:47
*When he said , "some kid sitting in home" ; it felt good because it's like everyone knows these things can'tbe done by OLD Professionals but Curious Young ones*
Everybody can do this, the most important is to help them to secure their systems and signal.
I need to find my old DVB-S PCI receiver again!
1:45 what my parents see when I reboot the rooter
PHD student looks younger than 19years old wow
Wow the intro was like watching a TV series
I like how he's humble
He doesn't have an Rgb keyboard. He's an imposter.
These guys are going to send us to the stone age....
Este es el tipo de amigos que debí a ver tenido.
All this and not a single mention of the word ENCRYPTION. Amazing.
I didn't know Harry Potter was also into hacking satellites.
Mechatronics Student here. Very inspiring stuff! Thx!
Scary. Just knowing that it’s so wide open means just figuring out the steps & how each is executed.
All I know is some cmd commands and some terminal commands
Thanks to this video. Many many many hackers started learning on how to hack Satellites
So it’s basically a home made echelon system 🤔😂
He has 2 monitors, He is a certified hacker man.
I like how the dude is literally named Savage.
It's like someone playing a part. nobody calls themselves a hacker, they are called a hacker by others.
I bet they were going to charge him, even though he was helping them
suprised this video wasnt taken down
After watching this video.... Amature hackers will make a line outside the stores to purchase a dish antenna.. 😀😀😀
A fellow Hacker with a well lit room, impossible
He is not a hacker for sure. Where is the badass hoodie and glasses?
Seems like he is formal hacker chill bro
Very informative thank you 🙏🙏
Why do they always try to find the most nerdiest looking hacker for shows 😂
What is the dish he is using, it would be handy for ham radio use.
If Harry Potter hadn't a magic stick...
Sounds like a principal assistant lol
What software was used in the clip of the satellite tracking segment?
Ive always wondered what the interface a tech that has access to a satalite looks like...if it's different from servers, switches, firewalls, etc
well... he seems to be payed well..
proving, yet again, that if I want to get in, I'm coming in whether you want me in or not..........
I didn’t know that eavesdropping to open or encrypted radio transmissions was considered “hacking”
So there's no step by step course here, huh!
We want more video on this.
Glad to hear, thanks!
What programming languages he actually use for this
Second video recommended to me on this topic.
Hacking satellite? Have you ever known or heard of a person whose name was Jim Geovedi? He's from Indonesia. Not only one person, but I forgot the name of the other, he hacked the satellite too.
He presented it with the title "Hacking a bird in the sky".
Good flag! Here's the presentation if anyone is interested: conference.hitb.org/hitbsecconf2011ams/materials/D2T2%20-%20Jim%20Geovedi%20and%20Raoul%20Chiesa%20-%20Hacking%20a%20Bird%20in%20the%20Sky.pdf
@@freethink Thx!
I'm really excited for knowing someone like Hitecyberspace On Telegram.
I was surprised when my Commander Wilson Brown recommended you to us.
From Usa Army says Thanks.
You can literally purchase the gear required to hack satellites crazy easy.... they're insanely easy to torment from what I've researched. Also there are multiple open source resources that allow for satellite monitoring which is pretty neat because they tell you when and where certain satellites are if you're wanting to hack a sat. Love this video.
While it says to use a dish I have read the antenna is the only thing really necessary.... I'm most likely wrong i don't do this pro like J here does lol but yea hack-a-sat comp was selling the gear for it super cheap when defcon was cxld during covid if I recall 🤔
They just eavesdropped on a satellite signal and did not mention about encryption where most satellite broadcaster use. If they can control a satellite, that will be hacking but sad to say, an up and down transmission of those signals are just for broadcasters, signal that are use to control satellite in their stationary position in only in the uplink and it is secured.
It would be fun to communicate with old disused satellites like a BBS
Old disused satellites are de-orbited. LEO's are sent back to Earth in a mini-fireworks show. GEO's are sent in the opposite direction - out into space.
Really surprising to see this. Aren't signals supposed to be encrypted? And if they are encrypted, did they find some way to break that?
all important signals are encrypted, they didn't
A lot of trouble can arise from lax security...on earth and above
He should be banned from the lobby
NASA, 300 companies, European Space Agency, Harvard, SpaceX, Blue Horizon wants to know your location.
What's the name of the intro music ?
what's the antenna at 0:46 called? i've been buying up some cheap TV gear too, for the same purpose, but I haven't come across that yet.
the main advantage of a hacker being is he knows how to hack , and also to protect himself from that
it worries me that you were your glass on the tip of the nose
The other day I was working at my brand spanking new space company. But I made a mistake, I asked how they protect against replaying messages, you know, idempotent message support. Suddenly a dude bursts through the door with a pair of pliers aiming them at my junk. These guys are something else.
That's really amazing. Love to learn more on this. How can I learn to use TV equipment to track satellites?
Yeah
0:39 ask yourself who or what captured this video?
So you're saying that if I ever wanted to talk to the FBI, all I'd need is a little determination and $300.
That is...exactly what we are saying. 😉
I mean, I’m sure you can find ways of doing it for free, but this is certainly one that’ll get you street nerd cred.
Why spent $300 ?
When u have a pc ?
Just say anything infront of ur camera
@FBI Federal Bureau of Investigation hey ! Just want to ask if facebook works for you
@FBI Federal Bureau of Investigationreally ?
Intercepting sensitive radio transmissions is easy, you can intercept WiFi, mobile phones, satellites, etc, but it's useless if you can't crack the encryption.
Does this work with smart fridge?
Love it how all the hackers look exactly like I imagine them ... :D
Does the Lets stare at the sky routine feel deep to the people making this video or do they think others actually think these guys stare into space daily?
i'm going to shamelessly ask what every developer would ask - dude, please make a course on how to hack satellites lol
These women are amazing
This nerd walkin arround with dramatic music is the funniest thing ever bro made tea and the music is like he is defusing a bomb
Well you just told them
he looks like he's 15
Bug bounties in space. That’s hot.
this is why encryption was invented even dough it also is breakable
The most surprising part about all this is that the hacker is using Windows.
I Will Never Go To Space
Hacking satellites most prablamatic
better call kevin mitnick
Well thats great to put out there for our enemies to see
Hope this kid is getting bug bounty rewards for this