The Microsoft Tax: Virus infects Windows PC control systems of US Predator and Reaper drones

“The U.S. government’s unmanned Predator and Reaper drones are continuing to fly remote missions overseas despite a computer virus that has infected the plane’s U.S.-based cockpits, according to one source familiar with the infection,” Andrea Shalal-Esa and Phil Stewart report for Reuters.

“Government officials are still investigating whether the virus is benign, and how it managed to infect the heavily protected computer systems at Creech Air Force Base in Nevada, where U.S. pilots remotely fly the planes on their missions over Iraq, Afghanistan and elsewhere,” Shalal-Esa and Phil Stewart report. “Armed tactical unmanned planes have become an increasingly valuable tool used by the U.S. government to track and attack individuals and small groups overseas, but the virus underscores the vulnerability of such systems to attacks on the computer networks used to fly them from great distances.”

MacDailyNews Take: “Such systems.” Next time, use a real system.

Full article here.

Noah Shachtman reports for Wired, “The virus has resisted multiple efforts to remove it from Creech’s computers, network security specialists say. And the infection underscores the ongoing security risks in what has become the U.S. military’s most important weapons system. ‘We keep wiping it off, and it keeps coming back,’ says a source familiar with the network infection, one of three that told Danger Room about the virus. ‘We think it’s benign. But we just don’t know.'”

MacDailyNews Take: Well, that’s reassuring. (smirk)

“Military network security specialists aren’t sure whether the virus and its so-called ‘keylogger’ payload were introduced intentionally or by accident; it may be a common piece of malware that just happened to make its way into these sensitive networks. The specialists don’t know exactly how far the virus has spread. But they’re sure that the infection has hit both classified and unclassified machines at Creech,” Shachtman reports. “That raises the possibility, at least, that secret data may have been captured by the keylogger, and then transmitted over the public internet to someone outside the military chain of command.”

Shachtman reports, “Despite their widespread use, the drone systems are known to have security flaws. Many Reapers and Predators don’t encrypt the video they transmit to American troops on the ground. In the summer of 2009, U.S. forces discovered ‘days and days and hours and hours’ of the drone footage on the laptops of Iraqi insurgents. A $26 piece of software allowed the militants to capture the video.”

“None of the remote cockpits are supposed to be connected to the public internet. Which means they are supposed to be largely immune to viruses and other network security threats,” Shachtman reports. “But time and time again, the so-called ‘air gaps’ between classified and public networks have been bridged, largely through the use of discs and removable drives. In late 2008, for example, the drives helped introduce the agent.btz worm to hundreds of thousands of Defense Department computers. The Pentagon is still disinfecting machines, three years later.”

MacDailyNews Take: Some “security specialists.” What’s their code name, “The Keystone Kops?”

Read more in the full article here.

MacDailyNews Take: Gee, neither Reuters nor Wired seem to have seen fit to mention which insecure mess of an OS is at fault here. You’d think people would want to know that bit of info, would’t you? Let’s look elsewhere…

NewsCore reports, “A senior Air Force source with knowledge of the drone program told FOX News Channel that the… virus “showed up on a Microsoft based Windows system.”

MacDailyNews Take: Wow, what a huge surprise.

Read more in the full article here.

MacDailyNews Take: When you stupidly deploy insecure junk, expect to get trashed.

Related articles:
The Microsoft Tax: ‘Indestructible’ botnet attacks millions of Windows PCs; Macintosh unaffected – July 1, 2011
The Microsoft tax: Stuxnet computer worm infects Microsoft’s porous Windows OS; Mac unaffected – September 27, 2010
The Microsoft Tax: New undetectable Windows trojan empties bank accounts worldwide; Mac unaffected – August 11, 2010
The Microsoft Tax: Windows zero-day flaw exposes users to code execution attack; Mac unaffected – August 09, 2010
The Microsoft Tax: Critical flaw lets hackers take remote control of Windows PCs; Mac unaffected – August 07, 2010
The Microsoft Tax: New attack bypasses every Windows XP security product tested; Mac unaffected – May 11, 2010
The Microsoft Tax: McAfee correctly identifies Windows as malware; Macintosh unaffected – April 21, 2010
The Microsoft Tax: DNS Windows PC Trojan poses as iPhone unlock utility; Mac and iPhone unaffected – April 15, 2010
The Microsoft Tax: 1-in-10 Windows PCs still vulnerable to Conficker worm; Macintosh unaffected – April 08, 2010
The Microsoft Tax: 74,000 Windows PCs in 2,500 companies attacked globally; Mac users unaffected – February 18, 2010
The Microsoft Tax: Widespread attacks exploit Internet Explorer flaw; Macintosh unaffected – January 22, 2010
The Microsoft Tax: Windows 7 zero-day flaw enables attackers to cripple PCs; Macintosh unaffected – November 16, 2009
The Microsoft Tax: Windows 7 flaw allows attackers to remotely crash PCs; Macintosh unaffected – November 12, 2009
The Microsoft Tax: Windows virus delivers child porn to PCs, users go to jail; Mac users unaffected – November 09, 2009
The Microsoft Tax: Worms infest Windows PCs worldwide; Mac users unaffected – November 02, 2009
The Microsoft Tax: Banking Trojan horse steals money from Windows sufferers; Mac users unaffected – September 30, 2009
The Microsoft Tax: Serious Windows security flaw lets hackers to take over PCs; Macintosh unaffected – July 07, 2009
The Microsoft Tax: Windows Conficker worm hits hospital devices; Macintosh unaffected – April 29, 2009
The Microsoft Tax: Conficker virus begins to attack Windows PCs; Macintosh unaffected – April 27, 2009
The Microsoft Tax: Conficker’s estimated economic cost: $9.1 billion – April 24, 2009

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.