Feeds

DIY aerial drone monitors Wi-Fi, GSM networks

Passwords cracked on the fly

Choosing a cloud hosting partner with confidence

Defcon Hobbyist hackers have built a DIY flying spy drone that's capable of intercepting communications over remote Wi-Fi and cellular networks and beaming them to snoops located half a world away.

Short for wireless aerial surveillance platform, the WASP is equipped with a battery of off-the-shelf hacking tools that can secretly hover over unsuspecting targets and infiltrate their networks. A 4G cellular connection links it to a back-end server that allows operators to control its operations and monitor its sensors in realtime.

All of the tools have been around for years, or even decades. What makes WASP novel is their all-in-one packaging in a 14-pound plane that can penetrate a target's geographical boundaries to tap a variety of electronic sources.

“Our goal was to take all these things, Black Hat and Defcon's greatest hits, and to put them in a target remotely from a long way away and offer it to a distributed user base,” Mike Tassey, one of the creators of WASP, said at the Defcon hacker conference in Las Vegas on Friday. “The idea was to illuminate the idea that old dogs have plenty of tricks left in them.”

WASP flying spy drone

WASP flying spy drone at the Defcon hacker conference (click to enlarge)

Styrofoam WASP

WASP is made mostly of styrofoam (click to enlarge)

At 27 inches high and 76 inches long, WASP can reach altitudes of 22,000 feet. It's equipped with a small computer running BackTrack 5, a penetration-testing tool that contains more than 500 separate components for hacking wireless networks, voice-over IP servers and other sensitive systems. It also contains hardware for spoofing GSM base stations that can intercept cellphone conversations of people in the vicinity.

Additional kit monitors communications sent over Bluetooth frequencies and data sent by RFID devices.

WASP connects to a control server through a secure VPN channel that's equipped with additional gear. A GPU from Nvidia can take a four-way handshake sniffed from the drone's wireless card to brute-force the WPA password, trying more than 350 million possible phrases in less than five hours. The back-end server also connects to a real GSM network, so the controllers can monitor calls in progress between a target on the ground and whoever is on the other end.

WASP, which is further described here, cost about $62,000 $6,200 to build and takes about 30 minutes for someone to learn how to fly.

“We really tried hard to make sure everything is above board, so when government agencies look at it everything is OK,” said Rich Perkins, the other creator of WASP. But he admits: “In the wrong hands, it could do a metric shit ton of evil.” ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
Boffins say they've got Lithium batteries the wrong way around
Surprises at the nano-scale mean our ideas about how they charge could be all wrong
Edge Research Lab to tackle chilly LOHAN's final test flight
Our US allies to probe potential Vulture 2 servo freeze
Europe prepares to INVADE comet: Rosetta landing site chosen
No word yet on whether backup site is labelled 'K'
Cracked it - Vulture 2 power podule fires servos for 4 HOURS
Pixhawk avionics juice issue sorted, onwards to Spaceport America
Archaeologists and robots on hunt for more Antikythera pieces
How much of the world's oldest computer can they find?
Bacon-related medical breakthrough wins Ig Nobel prize
Is there ANYTHING cured pork can't do?
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.