Attempted Sale of Reaper Drone Documents on Dark Web Thwarted

The MQ-9 Reaper drone waits in a hangar at Joint Base Elmendorf-Richardson Alaska

"I wouldn't say that they possess skills of highly advanced threat-actors", Andrei Barysevich, a researcher at Recorded Future, told Business Insider. While security firm Recorded Future didn't ascertain where the intruder secured this cache, they surmised it was stolen from the Pentagon or a US Army official.

"The same tactics our military are using in Iraq, Afghanistan, were being offered for sale on the dark web", said Barysevich, who said he found a posting on a hacking forum offering to sell documents from the U.S. Air Force with information on the MQ-9 Reaper drone for just $200. The drone has been used for unmanned surveillance missions for the military and other organisations including border control.

For years, Netgear users have been warned to change their default password when installed because without a new one, anyone can get on the network.

According to Record Future's research, thousands of routers remain vulnerable to this kind of attack, despite public warnings from the company and internal military cybersecurity training.

Recorded Future says it engaged the hacker online and discovered that he used Shodan to hunt down specific types of Netgear routers that use a known default FTP password.

One of the files exposed was a certificate saying the captain had successfully completed cybersecurity training.

The hacker also reportedly was selling US military documents such as a tank operation manual and information on how to reduce the capabilities of improvised explosive devices.

According to Insikt's report, the team verified the documents after contacting the hacker. "We continue to assist law enforcement in their investigation".

All sorts of bad stuff - including personal information - is hawked through dark web bazaars but classified material is seldom offered.

The discovery of the hacker comes amid heightened concern about how military secrets may be insufficiently protected, as the Defense Department's inspector general has reportedly been investigating a major security breach when Chinese hackers allegedly stole information relating to submarine warfare, including plans to build a supersonic antiship missile. These included potential images from drones and technical documents for other military equipment.

Creating a monetary incentive to steal sensitive information on the US military could become risky pretty quickly. He doesn't know how much of the data was downloaded by the hacker as it was claimed the person had a poor internet connection and low bandwidth.

The incident is the latest case of insecure routers leading to security vulnerabilities.

The hacker used the Shodan search engine to scan the internet for vulnerable devices, ultimately leveraging an easy-to-exploit vulnerability in Netgear routers that was publicized in 2016 to hack into the individual's system.

Once a device has been located it can be accessed remotely and the File Transfer Protocol system could be accessed using the username "admin" and password "password".

It's unclear how thieves got hold of the second set of documents spoken of by Recorded Future - with secrets on how the USA military avoids IEDs and operates tanks.

Related News:

Most liked

The flawless metaphor? North Atlantic Treaty Organisation summit photo sparks Twitter meme
The US leader has also singled out Germany for particular criticism over its defence spending. Trump continued the attack through the day after first raising it at a breakfast meeting.

HTC Exodus Phone to Support Crypto Wallet, CryptoKitties, Instead of Native Blockchain
The dedicated HTC Exodus site claims that the smartphone will be the "first cold wallet phone with key recovery" offering. HTC would like us to know that it's not kidding about that blockchain phone.

Father fights for life and limbs after contracting flesh-eating bacteria in river
Officials say the best way to avoid the bacteria is to avoid raw shellfish, and to only swim in water that is regularly tested. She said his limbs began to balloon within hours after complaining of severe pain and swelling in one of his legs.

‘Totally unacceptable’: Beijing vows retaliation if U.S. taxes $200bn of Chinese goods
Last year, more USA crude oil was sent to China than any other destination except Canada, the EIA said in an analysis on Tuesday. That prompted fears it might go beyond matching Washington's duty increases by disrupting operations for USA companies in China.

Erdogan's presidential rule begins with son-in-law as finance minister
The only European Union leaders are set to be Bulgarian President Rumen Radev and Hungary's strongman Prime Minister Viktor Orban. Mevlut Cavusoglu will remain as Turkey's foreign minister and Suleyman Soylu as the country's interior minister.

New safety measures announced for tourists after Thai cave rescue
They were discovered last Monday by British volunteer divers huddled on a narrow rock shelf deep within the flooded caves. He was taken to the same hospital in Chiang Rai where the first four boys rescued Sunday are being treated.

Katrina Kaif Faces Misbehaviour By Salman’s Fans In Canada
The video shows Katrina Kaif walking towards a vehicle in Vancouver when some people on the streets started booing. Meanwhile, the few of those who attempted to troll Katrina, can be heard saying: "We're here for Salman Khan .

Mobile phone-detecting road signs launched on United Kingdom highways
A study in 2016 found that nearly a third of motorists admitted to making phone calls, sending texts, posting on social media... Although the signs are unable to log offending number plates, such a feature is being considered for development in the future.

Centre approves telecom authority’s recommendations on net neutrality
CEO of Niti Ayog (Amitabh Kant) said that for districts, we must ensure digital infrastructure is provided at the earliest.

Man finds wife and 'her lover' dead of carbon monoxide poisoning
Law enforcement leaders told the station they think the woman was paying for work on a auto by having sex with the mechanic. I can't do that, ' she said. "I just want my mother back". "Basically she died because of carbon monoxide", Johnson said .

Thai boys lost weight but generally well after cave ordeal
The group will remain hospitalized for up to a week to ensure they are properly treated for all their health conditions. Meanwhile, reports say the boys and the coach were sedated to stop them panicking during the risky rescue .

Happily married couple considers divorce to get disabled daughter Medicaid
The family is thinking about getting a divorce so Ms. "It would be to not be together to get our child what we need", Maria said . The couple told the news station they fork out up to $15,000 out of pocket each year.

Brent oil gains $1 to claw back some losses
Lower oil prices are particularly important to USA consumers in the summer months when driving reaches its heaviest. Firstly, if the new list of tariffs on China are eventually imposed then China could turnaround and tax USA oil.

Americans in United Kingdom warned to keep 'low profile' during Trump visit
That afternoon he will meet the Queen at Windsor Castle before heading to Scotland for a private holiday. Then on Monday, he will be off to Helsinki to meet with Russian President Vladimir Putin.

Stormy Daniels arrested in strip club after customer ‘touched’ her
In May, Trump said Daniels was paid to stop "false and extortionist accusations" she made about a sexual encounter with him. Daniels, whose real name is Stephanie Clifford, has said she had sex with Donald Trump in 2006, when he was married.