Attempted Sale of Reaper Drone Documents on Dark Web Thwarted

MQ-9 Reaper docs sale

"I wouldn't say that they possess skills of highly advanced threat-actors", Andrei Barysevich, a researcher at Recorded Future, told Business Insider. While security firm Recorded Future didn't ascertain where the intruder secured this cache, they surmised it was stolen from the Pentagon or a US Army official.

"The same tactics our military are using in Iraq, Afghanistan, were being offered for sale on the dark web", said Barysevich, who said he found a posting on a hacking forum offering to sell documents from the U.S. Air Force with information on the MQ-9 Reaper drone for just $200. The drone has been used for unmanned surveillance missions for the military and other organisations including border control.

For years, Netgear users have been warned to change their default password when installed because without a new one, anyone can get on the network.

According to Record Future's research, thousands of routers remain vulnerable to this kind of attack, despite public warnings from the company and internal military cybersecurity training.

Recorded Future says it engaged the hacker online and discovered that he used Shodan to hunt down specific types of Netgear routers that use a known default FTP password.

One of the files exposed was a certificate saying the captain had successfully completed cybersecurity training.

The hacker also reportedly was selling US military documents such as a tank operation manual and information on how to reduce the capabilities of improvised explosive devices.

According to Insikt's report, the team verified the documents after contacting the hacker. "We continue to assist law enforcement in their investigation".

All sorts of bad stuff - including personal information - is hawked through dark web bazaars but classified material is seldom offered.

The discovery of the hacker comes amid heightened concern about how military secrets may be insufficiently protected, as the Defense Department's inspector general has reportedly been investigating a major security breach when Chinese hackers allegedly stole information relating to submarine warfare, including plans to build a supersonic antiship missile. These included potential images from drones and technical documents for other military equipment.

Creating a monetary incentive to steal sensitive information on the US military could become risky pretty quickly. He doesn't know how much of the data was downloaded by the hacker as it was claimed the person had a poor internet connection and low bandwidth.

The incident is the latest case of insecure routers leading to security vulnerabilities.

The hacker used the Shodan search engine to scan the internet for vulnerable devices, ultimately leveraging an easy-to-exploit vulnerability in Netgear routers that was publicized in 2016 to hack into the individual's system.

Once a device has been located it can be accessed remotely and the File Transfer Protocol system could be accessed using the username "admin" and password "password".

It's unclear how thieves got hold of the second set of documents spoken of by Recorded Future - with secrets on how the USA military avoids IEDs and operates tanks.

Related News:



Most liked

Rangers transfer spree to continue as Gerrard targets strong squad
Club historian David Mason on the comparisons between the first games of the Steven Gerrard and Graeme Souness. There's just a few more pieces missing, maybe.

China: Liu Xia free and on way to Germany
That prompted Western governments, including Germany and the United States, to renew their calls for Beijing to release Liu Xia. Xiaobo has already left, there is nothing in this world for me. "Using death to defy could not be any simpler for me".

HTC Exodus Phone to Support Crypto Wallet, CryptoKitties, Instead of Native Blockchain
The dedicated HTC Exodus site claims that the smartphone will be the "first cold wallet phone with key recovery" offering. HTC would like us to know that it's not kidding about that blockchain phone.

Erdogan's presidential rule begins with son-in-law as finance minister
The only European Union leaders are set to be Bulgarian President Rumen Radev and Hungary's strongman Prime Minister Viktor Orban. Mevlut Cavusoglu will remain as Turkey's foreign minister and Suleyman Soylu as the country's interior minister.

New safety measures announced for tourists after Thai cave rescue
They were discovered last Monday by British volunteer divers huddled on a narrow rock shelf deep within the flooded caves. He was taken to the same hospital in Chiang Rai where the first four boys rescued Sunday are being treated.

Katrina Kaif Faces Misbehaviour By Salman’s Fans In Canada
The video shows Katrina Kaif walking towards a vehicle in Vancouver when some people on the streets started booing. Meanwhile, the few of those who attempted to troll Katrina, can be heard saying: "We're here for Salman Khan .

Centre approves telecom authority’s recommendations on net neutrality
CEO of Niti Ayog (Amitabh Kant) said that for districts, we must ensure digital infrastructure is provided at the earliest.

Papa John's says founder resigned as chairman of the board
The city of Jeffersonville, Ind., had plenty of reason to add John Schnatter's name last year to its 80-year-old gymnasium. Schnatter's apology followed an earlier statement by the company that did not challenge the Forbes story's accuracy.

Happily married couple considers divorce to get disabled daughter Medicaid
The family is thinking about getting a divorce so Ms. "It would be to not be together to get our child what we need", Maria said . The couple told the news station they fork out up to $15,000 out of pocket each year.

Brent oil gains $1 to claw back some losses
Lower oil prices are particularly important to USA consumers in the summer months when driving reaches its heaviest. Firstly, if the new list of tariffs on China are eventually imposed then China could turnaround and tax USA oil.

Arrest Made After Elderly Man Is Beaten With Brick
Laquisha Jones, 30, was arrested for the attackTuesday night in Los Angeles , the Los Angeles County Sheriff's Department said . Investigators initially believed Rodriguez may have bumped into a young girl with Jones when she started to assault him.

Stormy Daniels arrested in strip club after customer ‘touched’ her
In May, Trump said Daniels was paid to stop "false and extortionist accusations" she made about a sexual encounter with him. Daniels, whose real name is Stephanie Clifford, has said she had sex with Donald Trump in 2006, when he was married.

England V. Croatia, Winner Will Play France
We haven't said our last word, there is still one more game to go. "We deserved to reach the final". Luka Modric and Co. will be a formidable opponent for France.

Roy Keane summed up England's World Cup exit with one, brutal sentence
Gareth Southgate's men still have one more game to play as they will take on Belgium in the third-place play-off on Saturday. You know how hard it is to get to these finals or even get to the World Cup. "We weren't talking about the final".

Starr reacts to Kavanaugh nomination
More than any other red-state senator, Heitkamp has received a remarkable amount of help from Republicans to keep her job. She said that with Kavanaugh's credentials, "it's very hard for anyone to tell me that he's not qualified for the job".