Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
United States Privacy Security Technology

'We're Not Being Paranoid': US Warns Of Spy Dangers Of Chinese-Made Drones (npr.org) 146

Drones have become an increasingly popular tool for industry and government. But the Department of Homeland Security is warning that drones manufactured by Chinese companies could pose security risks, including that the data they gather could be stolen. From a report: The department sent out an alert on the subject on May 20, and a video on its website notes that drones in general pose multiple threats, including "their potential use for terrorism, mass casualty incidents, interference with air traffic, as well as corporate espionage and invasions of privacy." "We're not being paranoid," the video's narrator adds. Most drones bought in the U.S. are manufactured in China, with most of those drones made by one company, DJI Technology. Lanier Watkins, a cyber-research scientist at Johns Hopkins University's Information Security Institute, said his team discovered vulnerabilities in DJI's drones. "We could pull information down and upload information on a flying drone," Watkins said. "You could also hijack the drone." The vulnerabilities meant that "someone who was interested in, you know, where a certain pipeline network was or maybe the vulnerabilities in a power utilities' wiring might be able to access that information," he noted.
This discussion has been archived. No new comments can be posted.

'We're Not Being Paranoid': US Warns Of Spy Dangers Of Chinese-Made Drones

Comments Filter:
  • Cars (Score:1, Offtopic)

    by Luthair ( 847766 )
    their potential use for terrorism, mass casualty incidents, interference with air traffic, as well as corporate espionage and invasions of privacy.
    • For the remotely controllable ones (i.e. virtually any car with drive-by-wire control systems and a network connection) that's certainly true. Well, air traffic and espionage are probably more of a challenge - but just imagine the chaos that could be sown if someone hacked every drive-by-wire car in the country to simultaneously engage maximum acceleration while disabling all driver inputs. Or just the cars of a few key individuals that opposed the hacker's (or their employer's) objectives.

      If the cars hav

      • by Luthair ( 847766 )
        I imagine driving a car on an airstrip would interfer with air traffic. Similarly slap some cameras and sensors on your car and monitor and go monitor some people or corporate activities.
      • by DeVilla ( 4563 )
        Just hack the cars of the people who already have access to a secure place and monitor the sensors / cameras on those vehicles without doing anything destructive that would draw attention to your access.
    • their potential use for terrorism, mass casualty incidents, interference with air traffic, as well as corporate espionage and invasions of privacy.

      Those have been real concerns since the inventions of cellular telephones, and the internet. And they will be pressing concerns when self-driving cars become more commonplace.

    • by lgw ( 121541 )

      Cars: their potential use for terrorism, mass casualty incidents, interference with air traffic, as well as corporate espionage and invasions of privacy.

      You joke, but cars are becoming increasingly hackable. The only Chinese-made cars I know of in the US are some of the Volvo lines. So far, no one's found a way to use one for espionage, but it's only a matter of time.

      • I was under the impression that (almost?) all cars for sale today are equipped with networked microphone and camera in the cockpit. Ostensibly for OnStar-style driver assistance services. But also, quite obviously, for surveillance of the driver and passengers.

      • by Luthair ( 847766 )
        I wasn't actually joking, my point was that their argument was pretty thin since you can apply it to many other things we casually accept.
  • DJI.

    It's a working anti-competitive strategy.

    The planet is reverting to nationalism and isolationism for reasons of US Capitalistic Party.

    Can't outperform them? Fake news their asses with fearmongering. Claim "national security."

    Think of the children.

    • by Impy the Impiuos Imp ( 442658 ) on Wednesday May 29, 2019 @09:49AM (#58671892) Journal

      Huh. I thought capitalism was why we were building in China. Now it's why we don't want to?

      It's almost like the profoundly ignorant throw it up as the evil for any political reason.

      • Comment removed based on user account deletion
        • According to the long term bond market the world economy is about to collapse anyway. So who the hell cares if Trump starts a war with China we are all fucked anyway. Carry on wingnuts, have at it, you are all doomed along with your crappy economic war against China. There won't be any drones to buy in five years time because the world economy is about to collapse and getting enough to eat and not die today will be your primary entertainment.

      • I thought capitalism was why we were building in China. Now it's why we don't want to?

        There's no reason why it couldn't be both, circumstances change. Only one of those things represents a free market, but capitalism doesn't require that.

        Of course, the parent didn't say anything about Capitalism being a reason for anything. He blamed a political party, and he probably meant the Republicans given that this China bullshit is Trump's baby.

    • by rot26 ( 240034 )
      The planet is naturally nationalistic and isolationist due to lessons learned during the past 5000 years, no matter what idealistic wishful thinking may be popular among those who have failed to learn from history.

      Fake news is no worse than wishful idealistic news.

      I do appreciate that you admit to posting in the interests of DJI.
      • by Megol ( 3135005 )

        naturally nationalistic
        isolationist
        5000 years

      • by suutar ( 1860506 )

        s/the planet is/humans are/

        FTFY

      • Actually moron the banking sector almost collapsed in 2008 and the "people" are so fucked off with paying off the debt created by it for the last ten years that they would gladly elect any scrotum with a bit of fighting talk about blaming black people, Jews or Mexicans for all their troubles because they are genuinely fed up with business as usual. That is why you have an orange cretin in the White house who wants to declare war on the rest of the world. It keeps him in power by feeding all those unhappy pe

    • The "National Security" threat seems to be having less and less meaning.
      If these devices are spying on us, instead of stopping them, bring them in push them to everyone. There will just be too much data for China to process.
      China is really busy monitoring its citizens to make sure they are following the party line, what are they going to do when they find out that Americans are not following the Party Line... Nothing.

      Now if there is a real threat, we shouldn't be using foreign equipment from any country fr

      • by AmiMoJo ( 196126 )

        We knew DJI would probably be next, after Huawei. It's easy to predict who is a "national security threat" by looking at their market share and economic importance to the Chinese economy.

        This is a proper movie-plot threat. You have a drone using a local non-IP radio link somewhere... And somehow the Chinese hack it remotely. Kinda like those crime dramas were the good guys can somehow access any CCTV camera anywhere, even if they are just locally wired in to a dedicated receiver over an analogue link.

        • This is a proper movie-plot threat. You have a drone using a local non-IP radio link somewhere... And somehow the Chinese hack it remotely.

          It likely isn't even as much as hacking them, but right now, I do believe there is concern that flight data and images are often sent THROUGH DJI's servers in China.

          That data can easily be collected there and analyzed, and well....AI stuff is getting better and better at picking out the good golden data from the cruft.

    • Can't outperform them? Fake news their asses with fearmongering.

      Meanwhile, China's probably over there like "Americans think toy drone is threat! Ha ha ha! They should see our MILITARY DRONE!"

      This administration is such an embarrassment.

    • by shanen ( 462549 )

      Rather fractured for an "insightful" mod.

      You forgot to mention "projection".

      However, looking it over again, now I think you were fishing for a funny mod. Among the main improvements the moderation system needs is a convenient display of multidimensional mods, such as insightful humor.

    • What we're seeing is factional infighting among elements of the Establishment.

      The Financialist faction and Progressive faction remain in favor of offshoring 100% of American industrial capacity. The former favor this because they directly profit from it. The latter favor it because mass unemployment and the immiserating of the working class are useful weapons in their cultural war against traditional values.

      Now we're seeing major pushback from the National Security faction. The aforementioned factions would

  • So why cant the would-be terrorist buy their own $2k drone to do their own surveillance rather than wait around for one to get near where they need in order to hijack it? Those that bankroll terrorists are usually wealthy such as saudi sheiks. Aside from a rich uncle daddy-warbucks they seem to be using tools like ransomware and fake virus' to dupe people on a regular basis. Seems $2k on a drone would be nothing.

    • by EvilSS ( 557649 )
      Come on, use your head! That would be way more complicated than waiting for some user to fly their drone near the place they were interested in, and secretly siphoning off the data from the drone, while they were near by enough to grab the drone feed. Next you'll probably ask why they don't buy publicly available pipeline maps or use Google Earth to just look at infrastructure from there!
    • The general idea is that someone else flying it already knows where and what they're looking for. From the remote side, all that you need to do is determine who is flying a drone near something you'd like to get a better look at yourself.

      Not a particularly hard thing to do when the drones are sending all that GPS and video data back to the mfg. company's hardware.

      Plus the luxury of doing it from home, no need to go anywhere near what you'd like to spy on, just set up some filter rules, and maybe train a pho

      • by e3m4n ( 947977 )

        nah you're giving these guys too much credit. Someone paid the 19 hijackers to come to the USA and fly airliners into buildings. That was substantial funding as those schools are not cheap, nor is the year of lodging they had while over here on a visa. In the end those guys were expendable. So telling some dude to learn to operate a drone, and who cares if he collects data then blows himself up after. He's just as expendable as those 19 hijackers. The ones not considered expendable wont even have to get the

      • This is complete FUD by an administration that has gone off the rails. I have both a DJI Spark and Mavic Air. They don't require an active internet connection for anything other than the initial activation when you first set it up.

        But okay, let's play this game and assume the hobbyist pilot leaves their mobile connection up while flying. All DJI products have built-in geofencing [dji.com] which prevents you from flying anywhere near anything the Chinese might be remotely interested in spying on. They've probably

        • When the data is already available, where's the loss in searching it for something you're curious in seeing? The point is that they're being provided data about all kinds of things, and while I'm sure most of it is entirely useless, but that doesn't mean it all is.

          The DJI privacy policy certainly indicates that they're collecting a decent bit of information:

          "Device-Related and Flight-Related Information. When you use DJI Products and Services, you may provide us with information relating to (i) your DJI Pr

        • You have great faith in the software that controls your drone...

          Geofencing is there to fence in us commoners. Surely you don't believe the hardware manufacturer, operating under orders from their national government, is similarly fenced?

          Likewise, when you turn off your drone's internet connection, you're not physically disabling it. Rather you are asking the control software, please disable it. There is no reason to suppose the software will obey you when it has been given countermanding orders by the manuf

    • They might buy a drone, but since they don't want to leave a trail, it's going to have to fall off of a truck.

      It might be smarter to just build drones, if they're going to spend money them. You can build a camera drone for [far] less than half what DJI is charging. It won't have all the fancy features, but you don't need them anyway.

      • by e3m4n ( 947977 )

        i suck at trying to fly manual quad copters I buy off bangood for sub $100 but its something fun to give out to kids as gifts. I dont know how good they are. Not sure of a trail ... i know the FAA requires to to register your drone, but lets say you didnt. Its not like they book flightpaths. So you're flying said drone, illegally, do your thing, land it and get the hell out of dodge. I would think it would require some serious proactive work to track me down. Assuming I am looking at commercial infrastructu

    • you get a ton of hobbyists out and about taking a massive amount of footage and posting it online because you can stream at the press of a button. If the military gets lazy with how it controls bases you can have useful footage show up online. Hardcore aviation hobbyists might even make it easier to find the footage by mistake by posting their itinerary.

      Of course they can limit where drones can fly but then that makes it easy to find suspicious sites.
      • by e3m4n ( 947977 )

        that would not require hacking though. If its streamed to FB Live or to youtube then it can be reviewed without having to hack a thing :-)

      • Of course they can limit where drones can fly but then that makes it easy to find suspicious sites.

        That barn door has been open for awhile and the horses are long gone. DJI already has maps of where you're geofenced from flying, which means DJI already knows where all the sensitive areas are. Oh, the irony.

        Prior to our current reality TV president, this wasn't a big deal.

    • So why cant the would-be terrorist buy their own $2k drone to do their own surveillance rather than wait around for one to get near where they need in order to hijack it?

      If you'd been paying attention to current events, you'd understand that this happened at least 4 times just in the past month.

      Luckily, the US is outside the flight range of a $2k drone flown from the middle east. That's probably why they'd want to hijack one.

      But in the case of China, where the threat is espionage not terrorism, they'd much rather just sell them, keep the $2k, and then siphon off all the data.

      • by e3m4n ( 947977 )

        in order to hit our infrastructure they have to be within 50 miles. So hacking a drone from 8k miles away (not even sure thats remotely possible) is as useful as tits on a bull. how is this a threat again? this just doesnt pass the smell test.

        • Keep reading, Ivan. Not the part about 50 miles. Not the part about 8k miles. Not the part about your mom. Keep going. All the way to the parts about China. OK, good, now read those words!

          • by e3m4n ( 947977 )

            so your answer is China=bad????

            China is bad for a lot of things, but at the same time, I'm literally living Nineteen Eighty-Four. Just because the other guy sucks does not automatically mean our guys are unimpeachable.

            • You're literally a millennial because you don't comprehend literacy.

              • by e3m4n ( 947977 )

                Wrong dipshit. Born in 71. Take your libtard idiocy elsewhere . That’s why your mom should’ve never Missed with that fucking coat hanger when she was trying to abort you in her back fucking bedroom.

                • Bullshit. You're not a nerd born in 1971, because you would literally comprehend the word literal.

                  • by e3m4n ( 947977 )

                    i tell you what... drive down i-75 ... stop off at mile marker 104 in ky. I'll meet you there and beat your ass into a pulp in person. By 1993 I had already fought in 3 wars. Ive got the campaign ribbons to prove it. So take a road trip and I'll do what your mom should have done when you were born... end your existence. I have nothing to prove to prepubescent vaginal bloodfarts like yourself.

  • And Jeff "stay out of my lucrative drone-air-space" Bezos.
  • This will go on and on until Trump is satisfied with the popular vote going his way from these apparent nationalist policies. He's so afraid of losing these elections, I'm guessing this will keep going up to the last day of presidential campaign.

    • Re: (Score:2, Informative)

      by rot26 ( 240034 )
      What does nationalism have to do with spying? Are you saying that the Chinese have no interest in spying on America? That would be childishly naive.
      • Are you saying that the Chinese have no interest in spying on America?

        They have, but no more than the US have in spying on China.

        • by jwdb ( 526327 )

          They have, but no more than the US have in spying on China.

          True - both likely already spy on each other. No worries if you're a disinterested party, but if you're on one side then it's in your interest to avoid the other side's spies.

    • Chinese food is up next. The other night, my General Tso's chicken was looking at me very suspiciously at me.

      And the fortune cookies seemed to be smiling sinister.

      Um, but wait . . . what about all those Smart Speakers that people are fond of stuffing into their homes these days . . . ?

      Should the US government issue a warning about Amazon . . . ?

      • My ThinkPads are starting to become self-aware... and learning how to use kitchen knives!!

        • My ThinkPads are starting to become self-aware... and learning how to use kitchen knives!!

          My advice: Stop rewatching The Beaver [wikipedia.org] every week. You're going to end up as insane as Mel Gibson.

    • Indeed, that's really all there is to these measures. Trump needs an enemy to point at for the next elections, and this time he has chosen China.
      • Well yeah, notice North Korea stopped firing the large missiles in 2017? That came after they had a huge accident at their nuclear testing site, killing 200 workers. NK's weapons program imploded, which is why NK started doing the "play nice" thing. After that Trump needed a new bogeyman, and generally Americans aren't scared of Iran. They used to talk about Iranian ICBMs too, which was all hot air. Poor countries can't build ICBMs, it's fanciful, and if they try they get screwed up like North Korea did.

        • ... so China fit the bill. However, unlike NK and Iran, countries that don't have / can't have ICBMs by any reasonable stretch of the imagination, China does in fact have plenty of operational ICBMs. The irony is that the narrative is that China is going to get us with their nefarious consumer gadgets, unlike Iran and NK who will supposedly hit us with ICBMs.

    • Oh noez!!! The leader of a democracy is trying to pursue public policy that benefits the people he represents. Oh the outrage!!!

  • Said every paranoid person ever....
    • Also said by those who know what's possible, because they're already doing it to others....

      In general, the U.S. government is among the most aggressive perpetrators of [insert war crimes, cyber-attacks, espionage, surveillance, nation-state destabilization, etc.] in the world.

    • "Actually, yes, we are being paranoid. But that's our job."

    • by HiThere ( 15173 )

      The thing is, it's not something it's paranoid to worry about, but this government is so paranoid (and lies so often) that I can't believe it's true just because they say so.

      AFAIK there is no evidence that Huawei is less secure than devices made by other companies. And this government claiming so without offering reasonable proof isn't something that I'm even going to consider as weak evidence. They're not only paranoid, they also lie too often to trust anything they say.

    • your only paranoid if they aren't out to get you.

      Anyone who is not concerned about being peeped/spyed/tracked are either idiots, rampant extroverts, or have not been paying attention.

  • Comment removed based on user account deletion
    • If you have a failed relationship, it is the other person. If you have two bad relationships, it is bad luck. If you have a third bad relationship, the problem is you.

      Hmm, France...Franco-Prussian War, WW1, WW2 - all France's fault?

      • Well, peoples feelings on that are clouded by Hitler / WWII, but note that in the Franco-Prussian War, the French Empire declared war on the Germans to try and prevent German reunification, and it was the French (Napoleon's) invasion of the region which caused the break up of the mostly Germanic Holy Roman Empire in the first place. Also, a big part of the rise of Hitler was because of the ridiculous Treaty of Versailles. Which sounds pretty French BTW.

        France did in fact have big hand in shaping Germanic po

        • The main point is that the French had been actively trying to disintegrate, prevent unity, or undermine Germany for over 100 years at the point that Hitler rose up, for the sake of wanting France to be the only major power in continental Western Europe.

  • DJI restrictions (Score:4, Informative)

    by foxalopex ( 522681 ) on Wednesday May 29, 2019 @10:14AM (#58672068)

    It's kind of ironic how this argument has gone both ways. I originally really wanted a DJI Drone too but after the paranoia around users abusing drones, DJI put altitude and speed limits and even geo-fencing no-fly zones in response. Plus some firmware updates are mandatory and there's major suspicions that DJI keeps in contact with their Drones. Now apparently we're a bit worried that DJI might have a little too much data on their drones. Go figure... Personally I don't think drones should have artificial limitations in them. If you break the laws, you're responsible for it.

    • There is nothing going "both ways" in what you describe. Just multiple examples of serious ongoing concerns about a company.

  • What ISN'T made in China anymore :( Companies, beholding to stockholders to continue to make stock go up, always look for ways to "improve the bottom line". For the last 30-40 years, that means CLOSING manufacturing plants, greasing the palms of the communist Chinese, using their pretty much SLAVE LABOR to make things dirt cheap, import them back, jack up the price and sell them elsewhere. That turned (at least the U.S.) from a manufacturing powerhouse, to a more simple consumer driven economy, which is NO
  • I suppose it's a useful differentiation politically... but I doubt most victims care whether their killer was a foreign-influenced America-hating evildoer or just a misguided patriot exercising his first-amendment rights to own a weapon specifically designed for killing lots of people.

  • I mean ok... so in THEORY, someone can download the data coming back from a DJI drone and MAYBE use it in such a way so they start mapping our power grid?

    I suppose the same wouldn't be possible if a similar drone was manufactured in the USA or someplace other than China though, right?

    I get the idea that the latest craze is to just pile on the possible ideas for how China *could* potentially be hacking us, regardless of actual evidence it's happened. I've never doubted that their products have a fair share

  • when you accuse others of doing what you yourself are actually doing.

  • I didn't know these drones had internet connection. Is it cellular or satellite? Either way, it would be impossibly expensive for China to connect each individual drone.
  • Literally.

    I know to you they're toys, but they're not.

  • Consider the following recent news.

    1. A report [nytimes.com] by the New York Times states, "President Trump moved on Wednesday to ban American telecommunications firms from installing foreign-made equipment that could pose a threat to national security, White House officials said, stepping up a battle against China by effectively barring sales by Huawei, the country's leading networking company."

    2. A report [npr.org] by NPR states, "But the Department of Homeland Security is warning that drones manufactured by Chinese companies

  • where a certain pipeline network was or maybe the vulnerabilities in a power utilities' wiring

    Apparently there is no other way to find out this information. None whatsoever. Not the filings with the government, both state and federal, when a pipeline is to be run through communities or checked for leaks, or what wiring to mangle to stop a power utility from providing power.

    I mean, that pipeline construction crew two miles from me certainly won't be able to tell me where a pipeline is located, nor

The 11 is for people with the pride of a 10 and the pocketbook of an 8. -- R.B. Greenberg [referring to PDPs?]

Working...