Salvato in:
Dettagli Bibliografici
Autori principali: Donchev, Marin, Smyth, Dylan
Natura: Preprint
Pubblicazione: 2024
Soggetti:
Accesso online:https://arxiv.org/abs/2412.04601
Tags: Aggiungi Tag
Nessun Tag, puoi essere il primo ad aggiungerne!!
_version_ 1866917858875801600
author Donchev, Marin
Smyth, Dylan
author_facet Donchev, Marin
Smyth, Dylan
contents Non-Terrestrial Networks (NTNs) and satellite systems have become an important component of modern data communication systems in recent years. Despite their importance, the security of these systems is often limited, leaving them vulnerable to determined attackers. In this paper, we outline a scenario in which an attacker can infect an in-orbit NASA Core Flight System (cFS) based satellite with ransomware and communicate the infection back to a satellite operator. This paper is the first to demonstrate an end-to-end exploit path that results in a ransomware infection without the need for a supply chain attack or compromised credentials. Novel ransomware is delivered to an emulated satellite system using custom shellcode that exploits a weakness in the considered scenario. The scenario considered by this initial piece of work achieves a success rate of 33.3\% for a complete successful infection.
format Preprint
id arxiv_https___arxiv_org_abs_2412_04601
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Evaluating an Effective Ransomware Infection Vector in Low Earth Orbit Satellites
Donchev, Marin
Smyth, Dylan
Cryptography and Security
Networking and Internet Architecture
D.4.6
Non-Terrestrial Networks (NTNs) and satellite systems have become an important component of modern data communication systems in recent years. Despite their importance, the security of these systems is often limited, leaving them vulnerable to determined attackers. In this paper, we outline a scenario in which an attacker can infect an in-orbit NASA Core Flight System (cFS) based satellite with ransomware and communicate the infection back to a satellite operator. This paper is the first to demonstrate an end-to-end exploit path that results in a ransomware infection without the need for a supply chain attack or compromised credentials. Novel ransomware is delivered to an emulated satellite system using custom shellcode that exploits a weakness in the considered scenario. The scenario considered by this initial piece of work achieves a success rate of 33.3\% for a complete successful infection.
title Evaluating an Effective Ransomware Infection Vector in Low Earth Orbit Satellites
topic Cryptography and Security
Networking and Internet Architecture
D.4.6
url https://arxiv.org/abs/2412.04601