| Category | Details |
|---|---|
| Overview | Global Navigation Satellite Systems (GNSS) are satellite positioning systems used for positioning, navigation, and timing (PNT) across various industries like agriculture, transportation, finance, etc. Current GNSS systems include GPS, GLONASS, Galileo, BeiDou, NavIC, and QZSS. |
| Segments in GNSS Operations | 1. Satellites orbiting Earth (19,000–36,000 km). 2. Control segment (monitoring and ground stations). 3. User hardware (mobile phones, vehicles) receiving satellite signals. |
| Threats to GNSS | 1. Signal jamming. 2. Signal blocking by structures. 3. Spoofing (intentional misinformation). 4. Physical attacks on satellites (unlikely). 5. Cyberattacks on GNSS receivers. |
| Recent Attacks (2023) | SiegedSec and GhostSec groups targeted GNSS receivers. SiegedSec attacked receivers in Colombia, Romania, and the U.S. GhostSec attacked receivers in Russia, Israel, and wiped data from compromised devices. |
| Exposed GNSS Receivers (2023) | Thousands of GNSS receivers exposed online. Top countries affected: USA, Japan, Canada, Australia, Greece, Russia, South Korea, China. Vendors include GNSS-1 to GNSS-5. |
| Exposed GNSS Receivers (2024) | By July 2024, 10,128 instances exposed globally. Top countries: USA, Ecuador, Jamaica, Australia, Russia. Most vulnerable industries: telecommunications, cloud computing, energy. |
| Vulnerabilities Found | Denial of service, data breaches, privilege escalation, buffer overflow, code injection. |
| Top Vulnerable Vendors (2024) | GNSS-1 (5,858 instances), GNSS-2 (2,094), GNSS-3 (901), GNSS-4 (890), GNSS-5 (385). |
| Top Exposed Countries (2024) | Ecuador (700 instances), Jamaica (500), USA, Germany, Brazil, China, Russia, Japan. |
| Types of OS on Exposed Receivers | Majority on open-source or proprietary Linux, with some Windows-based devices. |
| Protection Against Threats | Basic cybersecurity practices, robust authentication for internet-exposed GNSS, Space Attack Research and Tactic Analysis (SPARTA) matrix for space-related threats. |
| SPARTA Matrix | A tool to formalize TTPs (Tactics, Techniques, and Procedures) for space-related threats and map them to MITRE’s D3FEND matrix for defense measures. |
Read full article: https://securelist.com/internet-exposed-gnss-receivers-in-2024/114548/
Disclaimer: The above summary has been generated by an AI language model
Related posts:
DNSTWIST: A Powerful Tool for DNS Enumeration and Threat Detection
Lateral Movement on macOS: Unique and Popular Techniques and In-the-Wild Examples
Google takes down fake news sites, wire services run by Chinese influence operation
AI, Data Security, and CISO Shifts: Top Cybersecurity Trends to Watch in 2025
Leave a Reply