F-35 stealth fighter data stolen in Australia defence hack

Program progress, politics, orders, and speculation
  • Author
  • Message
Offline
User avatar

popcorn

Elite 3K

Elite 3K

  • Posts: 6810
  • Joined: 24 Sep 2008, 08:55

Unread post12 Oct 2017, 11:44

Worrisome.

http://www.defencetalk.com/f-35-stealth ... ack-70662/

Sensitive data about Australia’s F- 35 stealth fighter and P-8 surveillance aircraft programmes were stolen when a defence subcontractor was hacked using a tool widely used by Chinese cyber criminals, officials said on Thursday.

The 50-person aerospace engineering firm was compromised in July last year but the national cyber security agency, the Australian Signals Directorate (ASD), only became aware of the breach in November, technology website ZDNet Australia reported.

Some 30GB of “sensitive data” subjected to restricted access under the US government’s International Traffic in Arms Regulations rules were stolen, ASD’s Mitchell Clarke told a security conference on Wednesday according to ZDNet...

Defence Industry Minister Christopher Pyne told reporters in Adelaide “the information they have breached is commercial”.

“It is not classified and it is not dangerous in terms of the military,” he said.
"When a fifth-generation fighter meets a fourth-generation fighter—the [latter] dies,”
CSAF Gen. Mark Welsh
Offline
User avatar

ricnunes

Forum Veteran

Forum Veteran

  • Posts: 574
  • Joined: 02 Mar 2017, 14:29

Unread post12 Oct 2017, 11:55

<SARCASM MODE ON>

These (Chinese?) hackers are really stupid!
Why would they want to steal data from the inferior F-35 when they could have stolen/hacked data from the MUCH SUPERIOR Rafale or even Typhoon or Gripen NG?

<SARCASM MODE OFF>

:roll:
Offline
User avatar

steve2267

Forum Veteran

Forum Veteran

  • Posts: 960
  • Joined: 12 Jun 2016, 17:36

Unread post12 Oct 2017, 12:18

Another article stated that the Admin password was "admin" and the Guest account password was "guest" on Internet-facing servers. Unclear that the Admin account was for the machine, or just for the web server, but very sloppy IT work anyway you cut it.

One would hope that there is a modicum of auditing or "hurdle jumping" required before a contractor is given access to (potentially) sensitive information.
Offline

optimist

Senior member

Senior member

  • Posts: 359
  • Joined: 20 Nov 2014, 03:34

Unread post12 Oct 2017, 12:38

I guess no one told him the sub was already hacked in France

"Mr. Pyne added that Australia was increasingly a target for cyber criminals as it was undertaking a massive 50 billion Australian dollar ($39 billion) submarine project which he described as the world’s largest."
Offline
User avatar

spazsinbad

Elite 3K

Elite 3K

  • Posts: 18960
  • Joined: 05 May 2009, 21:31
  • Location: ɐıןɐɹʇsn∀¯\_(ツ)_/¯
  • Warnings: -2

Unread post12 Oct 2017, 14:09

So is the article a storm in a teacup or what? Hacking is noteworthy but military grade security not required apparently?
"...Defence Industry Minister Christopher Pyne told reporters in Adelaide “the information they have breached is commercial”. “It is not classified and it is not dangerous in terms of the military,” he said."
RAN FAA A4G Skyhawk 1970s: https://www.faaaa.asn.au/spazsinbad-a4g/ AND https://www.youtube.com/channel/UCwqC_s6gcCVvG7NOge3qfAQ/
Offline

mixelflick

Elite 1K

Elite 1K

  • Posts: 1598
  • Joined: 20 Mar 2010, 10:26
  • Location: Parts Unknown

Unread post12 Oct 2017, 15:26

ricnunes wrote:<SARCASM MODE ON>

These (Chinese?) hackers are really stupid!
Why would they want to steal data from the inferior F-35 when they could have stolen/hacked data from the MUCH SUPERIOR Rafale or even Typhoon or Gripen NG?

<SARCASM MODE OFF>

:roll:


I see what you did there :mrgreen:
Offline
User avatar

krorvik

Senior member

Senior member

  • Posts: 457
  • Joined: 12 Sep 2015, 15:26

Unread post12 Oct 2017, 15:27

steve2267 wrote:Very sloppy IT work anyway you cut it.


On so many levels... A lot of good practices need to be broken in order to open up as much as in this case.
Offline
User avatar

geforcerfx

Forum Veteran

Forum Veteran

  • Posts: 585
  • Joined: 10 Feb 2014, 02:46

Unread post12 Oct 2017, 15:36

steve2267 wrote:Another article stated that the Admin password was "admin" and the Guest account password was "guest" on Internet-facing servers. .


Sh*t now I have to change my data servers passwords, freakin hackers :D
Offline
User avatar

steve2267

Forum Veteran

Forum Veteran

  • Posts: 960
  • Joined: 12 Jun 2016, 17:36

Unread post12 Oct 2017, 16:37

geforcerfx wrote:
steve2267 wrote:Another article stated that the Admin password was "admin" and the Guest account password was "guest" on Internet-facing servers. .


Sh*t now I have to change my data servers passwords, freakin hackers :D


Oh, man... really? Everybody knows you should make it tricky: @dm!n :roll:
Offline
User avatar

geforcerfx

Forum Veteran

Forum Veteran

  • Posts: 585
  • Joined: 10 Feb 2014, 02:46

Unread post12 Oct 2017, 18:00

steve2267 wrote:
Oh, man... really? Everybody knows you should make it tricky: @dm!n :roll:


Dammit Man!! stop posting my passwords :twisted:

In all seriousness I wonder if this is a counter intel op, F-35 seems like such a prime program to do that with.
Online
User avatar

blindpilot

Forum Veteran

Forum Veteran

  • Posts: 911
  • Joined: 01 Mar 2013, 18:21
  • Location: Colorado

Unread post12 Oct 2017, 20:17

geforcerfx wrote:
steve2267 wrote:
Oh, man... really? Everybody knows you should make it tricky: @dm!n :roll:


Dammit Man!! stop posting my passwords :twisted:

In all seriousness I wonder if this is a counter intel op, F-35 seems like such a prime program to do that with.


Try "Ilovenasa". I hear some real smart folks use that one! :D :D

BP
Offline

sprstdlyscottsmn

Elite 3K

Elite 3K

  • Posts: 3096
  • Joined: 10 Mar 2006, 01:24
  • Location: Phoenix, Az

Unread post12 Oct 2017, 20:32

Screw special characters, go for length

wheniwasayounginmydaddysaidtomesoniwannaknowwhatitisyourwanttobeisaidillneverwearatiebutilikethecolorgreenithinkimgonnawannaflythefuckinf16
"Spurts"

-Pilot
-Aerospace Engineer
-Army Medic
-FMS Systems Engineer
Offline
User avatar

ricnunes

Forum Veteran

Forum Veteran

  • Posts: 574
  • Joined: 02 Mar 2017, 14:29

Unread post12 Oct 2017, 20:41

mixelflick wrote:
ricnunes wrote:<SARCASM MODE ON>

These (Chinese?) hackers are really stupid!
Why would they want to steal data from the inferior F-35 when they could have stolen/hacked data from the MUCH SUPERIOR Rafale or even Typhoon or Gripen NG?

<SARCASM MODE OFF>

:roll:


I see what you did there :mrgreen:



Ooops, I did it again... :mrgreen: :twisted:
Offline
User avatar

spazsinbad

Elite 3K

Elite 3K

  • Posts: 18960
  • Joined: 05 May 2009, 21:31
  • Location: ɐıןɐɹʇsn∀¯\_(ツ)_/¯
  • Warnings: -2

Unread post12 Oct 2017, 21:01

:doh: ANd JuST becuz TEDIOUS similar storms a'brewin' here: viewtopic.php?f=58&t=23043&p=378297&hilit=secret#p378297 :drool:
RAN FAA A4G Skyhawk 1970s: https://www.faaaa.asn.au/spazsinbad-a4g/ AND https://www.youtube.com/channel/UCwqC_s6gcCVvG7NOge3qfAQ/

Return to Program and politics

Who is online

Users browsing this forum: playloud and 11 guests