Security researcher was able to breach the SpaceX Starlink system with a homemade board made for around $25.

cybersecurity, ethical hacking, hacking, red hat conference, security, spacex, starlink, microsoft, windows, microsoft

Illustration of SpaceX’s Starlink network of satellites.

One solo security researcher was able to successfully hack the SpaceX Starlink satellite internet system. As if that is not amazing enough, Belgian researcher Lennert Wouters was able to achieve this breach using a homemade chipset that cost around $25.

Speaking at Black Hat, Wouters confirmed he was able to conduct a voltage fault injection attack on a Starlink User Terminal (UT). This is a SpaceX-operated satellite dish that allows people to connect to the system.

Wouters says he was able to enter the system and look through the network. He presented the successful hack in a presentation titled “Glitched on Earth by Humans” at the 2022 version of the yearly ethical hacking conference.  

To achieve his hack, Wouters purchased a Starlink dish and built his own custom modchip board to attach to it. In a report from Wired that delves into the hack, Wouters explains how he created the modchip for little cost by simply buying off-the-shelf components. In total, the hacker says he spent around $25 building the board.

He then got root access by creating a glitch in the Starlink UTsecurity operations bootroom. The modechip is interesting because Wouters specifically designed it to fit over the existing board on the Starlink dish. It features a Raspberry Pi microcontroller, switches, a voltage regulator, and a flash storage component on the existing PCB.

Attack

When it was attached, the modchip started a fault injection attack that could short the system momentarily. This was the window needed to bypass the security protocols, allowing Wouters to gain access to the secure parts of the system.

“Our attack results in an unfixable compromise of the Starlink UT and allows us to execute arbitrary code,” Wouters wrote. “The ability to obtain root access on the Starlink UT is a prerequisite to freely explore the Starlink network.”

If you’re unfamiliar with Starlink, it is developed by SpaceX and is a low Earth orbit network of satellites that has the goal of providing internet to the whole world. It currently involves 3,000 small orbital satellites.

SpaceX acknowledged Wouters’ work in a six-page paper. The company says it welcomes such hacks and tells researchers to “bring on the bugs” as a way to shore up the system. Furthermore, the company says the hack was “technically impressive.”

Tip of the day: For the most part, Windows apps are stable, but they can still be still thrown out of whack by updates or configuration issues. Many boot their PC to find their Microsoft Store isn’t working or their Windows apps aren’t opening. Luckily Windows 11 and Windows 10 have an automatic repair feature for apps that can resolve such issues.

TECH NEWS RELATED

Australia mulls tougher cybersecurity laws after data breach

ETtech Australian law doesn’t currently allow for Optus to be fined for the breach The Australian government said on Monday it is considering tougher cybersecurity rules for telecommunications companies and blamed Optus, the nation’s second-largest wireless carrier, for an unprecedented breach of personal data from 9.8 million customers.Optus said last ...

View more: Australia mulls tougher cybersecurity laws after data breach

QUAD nations to assist each other in taking action against malicious cyber activities

In a stern warning to state-sponsored malicious cyber activities, the grouping of India, Australia, Japan and the United States collectively called Quad has said they would assist each other in ensuring the security and resilience of regional cyberinfrastructure. A joint statement issued after foreign ministers Penny Wong of Australia, ...

View more: QUAD nations to assist each other in taking action against malicious cyber activities

watchTowr Founder & CEO Benjamin Harris on being a step ahad of attackers in today's evolving cybersecurity landscape [Q&A]

Organizations are increasingly facing challenges in maintaining a strong security posture, shares Benjamin Harris, Founder and Chief Executive Officer of security firm watchTowr, in a TechNode Global Q&A. “The reality is that cybersecurity teams globally have increasingly small amounts of time to react and protect themselves from emerging threats and ...

View more: watchTowr Founder & CEO Benjamin Harris on being a step ahad of attackers in today's evolving cybersecurity landscape [Q&A]

Train to become an ethical hacker with this $35 course deal

Cyber security is one of the fastest growing sectors in the tech industry. Want to train for a career that offers a ton of upside? Then start your education now with the convenient and affordable 2023 Complete Cyber Security Ethical Hacking Certification Bundle, offered to readers at a discounted ...

View more: Train to become an ethical hacker with this $35 course deal

Peter Shor wins Breakthrough Prize in Fundamental Physics

MIT professor to share $3 million prize with three others; Daniel Spielman PhD ’95 wins Breakthrough Prize in Mathematics.

View more: Peter Shor wins Breakthrough Prize in Fundamental Physics

Hackers may be hiding in plain sight on your favorite website

Security researchers have detailed how domain shadowing is becoming increasingly popular for cybercriminals. As reported by Bleeping Computer, analysts from Palo Alto Networks (Unit 42) revealed how they came across over 12,000 such incidents over just a three-month period (April to June, 2022). Getty Images An offshoot of DNS hijacking, ...

View more: Hackers may be hiding in plain sight on your favorite website

2K warns users to beef up cyber security after support team gets hacked

Borderlands and BioShock publisher 2K Games has been hacked. The company announced the breach on Wednesday, and it is warning customers to change their passwords and not open any emails from its support page. The 2K Support Twitter account, which was not affected by the hack, posted the following ...

View more: 2K warns users to beef up cyber security after support team gets hacked

Six Lincoln Laboratory inventions win 2022 R&D 100 Awards

Technologies recognized with "Oscars of Innovation" transform hurricane tracking, electronics cooling, collision avoidance, cybersecurity, and more.

View more: Six Lincoln Laboratory inventions win 2022 R&D 100 Awards

Is your Malwarebytes suddenly blocking Google? It’s not just you

DDoS and bot attacks in 2022: Business sectors at risk and how to defend

This huge DDoS attack was one of the longest ever recorded

Revolut hit by cyberattack affecting 50,000 users

Top 8 takeaways from the VMWare Cybersecurity Threat Report

Uber Claims Lapsus$ Group Behind Cybersecurity Breach

Space Force shifting resources to intelligence and cybersecurity

The cost-benefit analysis of database backup strategies

Spellcheckers in Google Chrome could expose your passwords

Annuar Musa: Government has a lead on alleged civil servant e-payslip data theft

Learn how to defend networks for $49 with these CompTIA prep courses

Scam Alert! Fake Microsoft Emails About Queen's Death Can Steal Your Confidential Information

OTHER TECH NEWS

Top Car News Car News