Researchers used a decommissioned satellite to broadcast hacker TV

Illustration of a satellite orbiting Earth.

Getty Images | 3DSculptor

reader comments

48 with 33 posters participating

Independent researchers and the United States military have become increasingly focused on orbiting satellites’ potential security vulnerabilities in recent years. These devices, which are built primarily with durability, reliability, and longevity in mind, were largely never intended to be ultra-secure. But at the ShmooCon security conference in Washington, DC, on Friday, embedded device security researcher Karl Koscher raised questions about a different phase of a satellite’s life cycle: What happens when an old satellite is being decommissioned and transitioning to a “graveyard orbit”?

Koscher and his colleagues received permission last year to access and broadcast from a Canadian satellite known as Anik F1R, launched to support Canadian broadcasters in 2005 and designed for 15 years of use. The satellite’s coverage extends below the US southern border and out to Hawaii and the easternmost part of Russia. The satellite will move to its graveyard orbit soon, and nearly all other services that use it have already migrated to a new satellite. But while the researchers could still talk to the satellite using special access to an uplink license and transponder slot lease, Koscher had the opportunity to take over and broadcast to the Northern Hemisphere.

“My favorite thing was actually seeing it work!” Koscher tells WIRED. “It’s kind of unreal to go from making a video stream to having it broadcast across all of North America.”

Koscher and his colleagues from the Shadytel telecommunications and embedded device hacking group broadcast a livestream from another security conference, ToorCon San Diego, in October. At ShmooCon last week, he explained the tools they used to turn an unidentified commercial uplink facility (a station with a special powered dish to communicate with satellites) into a command center for broadcasting from the satellite.

broke into an HBO broadcast of The Falcon and the Snowman by hijacking the Galaxy 1 satellite signal.

More recently, hackers have taken advantage of underutilized satellites for their own purposes. In 2009, Brazilian Federal Police arrested 39 suspects on suspicion of hijacking US Navy satellites using high-powered antennas and other ad hoc gear for their own CB (citizens band) short-distance radio communications.

Beyond independent hackers, Koscher points out that the lack of authentication and controls on satellites could allow countries to hijack each others’ equipment. “One implication is that states who want to broadcast propaganda could do it without launching their own satellite; they could use another satellite if they have the ground equipment,” he says.

Ang Cui, an embedded device security researcher who launched the NyanSat open source ground station project in 2020, notes that decommissioned satellites aren’t the only ones that could be hijacked. “One could take over even newish satellites,” he says. But thinking about those in the end-of-life stages, he adds, “There definitely are things that are just hanging out up there.”

One of Koscher’s colleagues, Falcon, notes that from a pluralistic, freedom-of-information perspective, satellite uplink capabilities could be reimagined as plentiful and available rather than exclusive and scarce. “What if this was just a universal utility,” Falcon says with a faraway look.

This story originally appeared on wired.com.

Article Tags:
Article Categories:
Technology