Nav

A Guy Hacked Into Passenger Jet Communication Equipment And Is Presenting At The Black Hat

Ruben Santamarta reportedly hacked the satellite communications systems of passenger jets and is presenting his findings this week at Black Hat this week in Las Vegas.

Black Hat, an information security series, is globally renowned and has evolved into a premier event for security researchers and professionals. 

Santamarta's presentation Thursday is expected to be one of the most widely watched, according toReuters. The consultant with cyber security firm IOActive is laying out the technical details of how he hacked a passenger plane and what need to be done to improve their security.

"These devices are wide open. The goal of this talk is to help change that situation," Santamarta, 32, told Reuters.

The researcher said he discovered the vulnerabilities by "reverse engineering" - or decoding -highly specialized software known as firmware, used to operate communications equipment made by Cobham Plc, Harris Corp, EchoStar Corp's Hughes Network Systems, Iridium Communications Inc and Japan Radio Co Ltd., according to Reuters.

In theory, a hacker could use a plane's onboard Wi-Fi signal or inflight entertainment system to hack into its avionics equipment, potentially disrupting or modifying satellite communications, which could interfere with the aircraft's navigation and safety systems, Santamarta said. 

Santamarta's hacks have only been tested in controlled environments, such as IOActive's Madrid laboratory. Whether they are possible in the real world remains theorhetical until accomplished.

Exposing the vulnerability could lead to changes in the communications equipment aboard jets.

Black Hat presentations have lead to changes by other companies in the past.

In 2009, Charlie Miller and Collin Mulliner demonstrated a method for attacking iPhones with malicious text messages, prompting Apple Inc to release a patch.

In 2011, Jay Radcliffe demonstrated methods for attacking Medtronic Inc's insulin pumps, which helped prompt an industry review of security.

Latest Stories