ADVERTISEMENT

Attack of drones: airborne cybersecurity nightmare

Once a niche technology, drones are about to explode in terms of market growth and enterprise adoption. Naturally, threat actors follow the trend and exploit the technology for surveillance, payload delivery, kinetic operations, and even diversion.

Attack of Drones

Image by Shutterstock

Adam Kohnke
Adam Kohnke Contributor
Nov 24, 2022 Updated: 24 November 2022 1 min read

Market overview

Aerial trespass

Common malicious uses of drones
Figure 1 – Common malicious uses of drones against enterprises including kinetic, surveillance and smuggling operations.

Attacks against enterprise-owned drones

Common cyberattacks against enterprise drones
Figure 2 – Common cyberattacks executed against enterprise drones.
ADVERTISEMENT

Dronesploit

Wireless network interface status
Figure 3 – Wireless network interface successfully placed in Monitor mode
Dronesploit ships with 26 default modules
Figure 4 – Dronesploit ships with 26 default modules covering Auxiliary, Command and Exploit modules.
Options for Dronesploit module
Figure 5 – Loading, reviewing options for and executing the find_ssids module in Dronesploit.

Danger Drone platform

Result of Airodump-ng wlan0
Figure 6 – Result of Airodump-ng wlan0, uncovering active Wi-fi networks, drone MAC address (BSSID), and various security requirements for authentication.
Testing of the platform
Figure 7 – Example showing how unprotected drone networks can lead to drone discovery and further penetration testing of the platform.
Overlayed airodump commands
Figure 8 – Overlayed airodump commands. The background command is running “airodump-ng wlan0” to reveal stations connecting to the Sanrock Wi-fi network associated to hardware address starting with “98:C9:7C:”. There is currently no loss of ethernet frames, indicating uninterrupted connectivity.
Successfully achieved attack
Figure 8 – aireplay-ng successfully achieving a ‘de-authentication’ attack.

Disclaimer

ADVERTISEMENT