[LINK] Cyber hijack of MH370?

Bernard Robertson-Dunn brd at iimetro.com.au
Mon Mar 17 12:04:17 AEDT 2014 

On 17/03/2014 10:48 AM, Jan Whitaker wrote:
> We've talked before about the vulnerability of
> SCADA systems in the energy/utility sector. This
> potential on an aircraft is downright scary.
>
> Missing Malaysia Airlines flight could have
> fallen victim to world's first 'cyber-hijack'
> March 17, 2014 - 9:42AM
> Deborah Gough
> http://www.theage.com.au/it-pro/security-it/missing-malaysia-airlines-flight-could-have-fallen-victim-to-worlds-first-cyberhijack-20140316-hvji3.html

Without commenting on any of the claims involving the problem in general 
or the disappearance of MH370:

http://www.forbes.com/sites/andygreenberg/2013/04/10/researcher-says-hes-found-hackable-flaws-in-airplanes-navigation-systems/
'Spokespeople for the EASA, FAA and Rockwell Collins all echo 
Honeywell’s statement that while Teso’s attack works on PC simulation 
software, it wouldn’t give him control of a real plane’s certified 
flight management system.'

'The FAA: “The FAA is aware that a German information technology 
consultant has alleged he has detected a security issue with the 
Honeywell NZ-2000 Flight Management System (FMS) using only a desktop 
computer. The FAA has determined that the hacking technique described 
during a recent computer security conference does not pose a flight 
safety concern because it does not work on certified flight hardware. 
The described technique cannot engage or control the aircraft’s 
autopilot system using the FMS or prevent a pilot from overriding the 
autopilot. Therefore, a hacker cannot obtain “full control of an 
aircraft” as the technology consultant has claimed.”'

http://edition.cnn.com/2013/04/11/tech/mobile/phone-hijack-plane/index.html
'Teso says he developed SIMON in a way that makes it work only in 
virtual environments, not on actual aircraft.'

'Teso told the crowd that he used flight-management hardware that he 
bought on eBay and publicly available flight-simulator software that 
contains at least some of the same computer coding as real flight software.'

-- 

Regards
brd

Bernard Robertson-Dunn
Sydney Australia
email: brd at iimetro.com.au
web:   www.drbrd.com
web:   www.problemsfirst.com
Blog:  www.problemsfirst.com/blog

More information about the Link mailing list