According to experts presenting at the RSA Conference in the US this week, Dutch police drones are vulnerable to being hacked by little more than a smidgen of knowledge and a $40 of easily obtainable parts.
The researcher, Nils Rodday, says that the Xbee telemetry module fitted to the drone (that lets it communicate at a greater distance than is possible with a normal drone) is crucial in taking control of the devices.
Essentially, he explains that by hacking the Wi-Fi connection of the drone’s user, he can then transmit commands to the drone so it will do pretty much whatever he wants. If the connection didn’t use a protocol with known vulnerabilities, Rodday says it would be a trickier prospect.
Vulnerabilities in drones that cost up to $20,000 each isn’t something that any police force would want to be losing control of, so let’s just hope Dutch police don’t go the way of the US in allowing the use of armed drones. That really could be a terrible prospect combined with the relatively easy hack.
It’s pretty unlikely that the Dutch police knew the drones are vulnerable to remote hacking, but in a twist of bizarre foresight, at least they’ve already been training eagles for war on drones.
Update March 10 – The manufacturer of the Xbee module got in touch to say that the drone maker had decided not to activate the chip’s encryption capabilities.