Monday, August 17, 2015

This drone can steal data while hovering above your office

Source: http://www.engadget.com/2015/08/17/hacking-drone//

OLYMPUS DIGITAL CAMERA

It's the job of a security researcher to figure out how the company they are working for could be compromised. Apparently that now means using a drone sniff out vulnerabilities a few dozen feet off the ground. The Aerial Assault drone houses a raspberry Pi running Kali Linux, a distro built specifically for penetration testing (also known as pen testing) of networks and devices. Once in the air, the spy drone can detect insecure devices and networks and store that information locally or beam it back to the pilot.

The Aerial Assault drone is built on top of open source technology so researchers can purchase and adjust it to work in a way that suites their needs. Because it uses GPS, in addition to hanging outside of skyscrapers collecting unencrypted data, it can also be sent out to multiple buildings in areas that would be inaccessible by a person. For example; a courtyard in the middle of a complex or building behind a very large fence with razor wire.

While the craft is intended for researchers, there's always the possibility that someone with fewer scruples could purchase it and use it to steal data from an individual or company. So if you're feeling a bit safer about your system because you're 30 floors up, think again. The $2,500 drone should be on sale in the next few days at Wall of Sheep. If you're super impatient, you can hit up the site's sales team via email.

Filed under: , ,

Comments

Tags: AerialAssualt, DefCon, Drone, PenTesting, security, Wallofsheep