![](\"https:\/\/media.wired.com\/photos\/6243b4727942145182a3e7d1\/master\/pass\/Canadian-Satellite-Hack-1248873601.jpg\"\/)
<\/p>\n<\/p>\n
Credit to Author: Lily Hay Newman| Date: Wed, 30 Mar 2022 13:01:24 +0000<\/strong><\/p>\n Lily Hay Newman<\/a><\/span><\/span><\/p>\n To revist this article, visit My Profile, then View saved stories<\/a>.<\/p>\n To revist this article, visit My Profile, then View saved stories<\/a>.<\/p>\n Independent researchers and<\/span> the United State military have become increasingly focused<\/a> on orbiting satellites' potential security vulnerabilities<\/a> in recent years. These devices, which are built primarily with durability, reliability, and longevity in mind, were largely never intended to be ultra-secure. But at the ShmooCon security conference in Washington, DC on Friday, embedded device security researcher Karl Koscher raised questions about a different phase of a satellite's life cycle: What happens when an old satellite is being decommissioned and transitioning to a \u201cgraveyard orbit<\/a>\u201d?<\/p>\n Koscher and his colleagues received permission last year to access and broadcast<\/a> from a Canadian satellite known as Anik F1R, launched to support Canadian broadcasters in 2005 and designed for 15 years of use. The satellite's coverage extends below the US southern border and out to Hawaii and the easternmost part of Russia. The satellite will move to its graveyard orbit soon, and nearly all other services that use it have already migrated to a new satellite. But while Anik F1R still had its uplink license and transponder slot lease, Koscher had the opportunity to take over and broadcast to the northern hemisphere.<\/p>\n \u201cMy favorite thing was actually seeing it work!\u201d Koscher tells WIRED. \u00a0\u201cIt's kind of unreal to go from making a video stream to having it broadcast across all of North America.\u201d<\/p>\n Koscher and his colleagues from the Shadytel telecommunications and embedded device hacking group broadcast a livestream from another security conference, ToorCon San Diego, in October. At ShmooCon last week, he explained the tools they used to turn an unidentified commercial uplink facility (a station with a special powered dish to communicate with satellites) into a command center for broadcasting from the satellite.<\/p>\n In this case, the researchers had permission to access both the uplink facility and the satellite, but the experiment highlights the interesting gray area when a defunct satellite is not being used but has not yet moved father away from Earth to its final resting orbit.\u00a0<\/p>\n \u201cTechnically, there are no controls on this satellite or most satellites\u2014if you can generate a strong enough signal to make it there, the satellite will send it back down to the Earth,\u201d Koscher explains. \u201cPeople would need a big dish and a powerful amplifier and knowledge of what they were doing. And if a satellite were fully utilized, they would need to overpower whoever else was using that particular transponder spot or frequency.\u201d<\/p>\n In other words, whoever yells loudest into a (geosynchronous orbiting) microphone will have their voice amplified the most, but it's difficult to overpower established broadcasting giants\u2014although not unprecedented. In 1986, for example, a hacker who called himself Captain Midnight broke into an HBO broadcast<\/a> of The Falcon and the Snowman<\/em> by hijacking the Galaxy 1 satellite signal.<\/p>\n More recently, hackers have taken advantage of underutilized satellites for their own purposes. In 2009, Brazilian Federal Police arrested 39 suspects on suspicion of \u00a0hijacking US Navy satellites<\/a> using high-powered antennas and other ad hoc gear for their own CB (citizens band) short-distance radio communications.<\/p>\n Beyond independent hackers, Koscher points out that the lack of authentication and controls on satellites could allow countries to hijack each others' equipment. \u201cOne implication is that states who want to broadcast propaganda could do it without launching their own satellite, they could use another satellite if they have the ground equipment,\u201d he says.<\/p>\n Ang Cui, an embedded device security researcher who launched the NyanSat open source ground station project in 2020, notes that decommissioned satellites aren\u2019t the only ones that could be hijacked. \u201cOne could take over even newish satellites,\u201d he says. But thinking about those in the end-of-life stages, he adds, \u201cThere definitely are things that are just hanging out up there.\u201d<\/p>\n One of Koscher's colleagues, who goes by the hacker name Falcon, notes that from a pluralistic, freedom-of-information perspective, satellite uplink capabilities could be reimagined as plentiful and available rather than exclusive and scarce. \u201cWhat if this was just a universal utility,\u201d Falcon says with a faraway look.<\/p>\n