The vulnerability of US Navy ships to computer hacking is scarier than you'd think
The collision of guided-missile destroyer USS John S. McCain with a tanker near Singapore was the fourth accident involving ships from the US Navy’s 7th fleet in less than a year.
Two of the incidents — collisions involving the USS McCain and the USS Fitzgerald earlier this summer — have left a total of 17 sailors dead or missing, more than the 11 service members killed in Afghanistan so far this year.
After the McCain collision, the Navy relieved the commander of the 7th fleet “due to loss of confidence in his ability to command,” according to the Navy.
The service also planned a temporary halt of operations around the world and to launch a fleet-wide review in search of systemic issues that could have contributed to the most recent incidents.
The Navy is known for its thorough and unsparing reviews, which have been undertaken in the aftermath of each incident, and analysts are already pointing to internal issues, as well as high operational tempos in heavily trafficked waterways, that could be related to the mishaps.
But the number of accidents involving warships in the western Pacific — during “the most basic of operations” — has stirred concern that outside factors are affecting the ships and their crews.
“There’s something more than just human error going on because there would have been a lot of humans to be checks and balances” when transiting the Strait of Malacca, the narrow, heavily trafficked waterway the McCain was approaching, Jeff Stutzman, a former Navy information warfare specialist, told McClatchy.
“I don’t have proof, but you have to wonder if there were electronic issues,” said Stutzman, who is now chief intelligence officer for cyber-intelligence service Wapack Labs.
Adm. John Richardson, the chief of naval operations, tweeted on August 21 that there were “no indications right now” of “cyber intrusion or sabotage.” But, he added, the “review will consider all possibilities.”
2 clarify Re: possibility of cyber intrusion or sabotage, no indications right now…but review will consider all possibilities
— Adm. John Richardson (@CNORichardson) August 21, 2017
The admiral said the McCain’s collision with the tanker was the second “extremely serious incident” since the Fitzgerald’s collision with a Philippine cargo ship off the coast of Japan in mid-June. The nature of the incidents and the narrow window in which they occurred “gives great cause for concern that there is something out there that we’re not getting at.”
Experts have downplayed the likelihood of such attacks on US warships, noting that infiltrating Navy guidance systems would be very hard to do and instead citing human negligence or error as likely causes. Others have dismissed the likelihood of state-directed attacks on ships at sea, noting that such efforts would be a misuse of resources, strategically unwise, and generally harmful to maritime conduct.
But recent high-profile cyberattacks around the world have brought new attention to the security of maritime navigation, which is highly reliant on computer networks.
The US Navy uses encrypted navigation systems that would be difficult to hack or deceive, and there’s no sign satellite communications were at fault in the McCain’s collision. But there is technology out there to misdirect GPS navigation — typically through a process known as “spoofing” that leaves the system thinking it is somewhere it’s not.
The software and electronic gear needed to spoof a GPS system has become easier to get in recent years, particularly for private or nonstate actors.
In 2013, a team of graduate students led by Todd Humphreys, a professor at the University of Texas at Austin and satellite-navigation expert, were able to spoof the GPS on an $80 million yacht, directing it hundreds of yards off course without the system detecting the change.
In late June, GPS signals for about 20 ships in the eastern Black Sea were manipulated, with navigation equipment on the ships, though seeming to be functioning correctly, saying the ships were located 20 miles inland. An attack on thousands of computers later that month also disrupted shipping around the world.
Global commercial shipping is more vulnerable to such attacks and cargo ships are more exposed — the number of them plying the high seas has quadrupled over the past 25 years. And causing a collision by hacking or hijacking a commercial vessel’s GPS is seen as increasingly possible.
Most commercial and passenger ships use the Automatic Identification System, or AIS, to locate other ships and avoid collisions. But the AIS has weaknesses, and hackers could in theory send out a signal claiming to be a phantom ship, affecting navigation decisions by other ships in the area.
Dana Goward, former chief of Marine Transportation Systems for the US Coast Guard, said hackers could go after the unsecured navigation system on a commercial or private ship while simultaneously jamming a Navy ship’s guidance systems. Or they could misdirect the commercial ship’s guidance system, sending the ship off-course.
In the aftermath of the McCain and Fitzgerald collisions, the demands facing the US Navy, and the Pacific fleet in particular, have gotten renewed focus. Greater operational demands on fewer ships have cut into time for rest as well as time dedicated to training (and the nature of that training has changed as well).
In light of such demands, experience suggests that in high-traffic areas mistakes by humans manning the ships remained a likely culprit, said Goward, a former Coast Guard captain. “It’s a difficult environment to be in and human error is always present,” he told USA Today.
- Russian artists turned Putin into pop art in a new exhibition — and the photos are curious
- There's a 'double-edged sword' hanging over Mexico's decade-long war on drug cartels
- Watch the F-22 in action — the most dangerous jet fighter in the US Air Force for the last 20 years
- Step inside the US' new $1 billion embassy in London — the most expensive embassy ever constructed
- Trump's daily briefings often don't include intelligence about Russia to avoid upsetting him
Why the Growler is the king of electronic warfare
The mission of the Boeing EA-18G Growler is to use jammers or HARMs to put the enemy's "eyes" out of commission and give allies an airborne advantage.
4 dangers medics face while deployed in combat
Medics are commonly targeted on the battlefield by enemies to take them out of the fight. Without the "Docs" around, the patrol can't correctly function.
5 reasons you should have enlisted as a 'Fister'
Maybe you're picking your MOS based off what you can get. Maybe you're choosing by cool points. When it comes to cool points, one MOS reigns: Fister.
This veteran's Korean-inspired hot sauce will blow your mind
Gochujang is going to be the flavor of 2018. Leave it to an Army Ranger to lead the way in creating one of the tastiest takes on the Korean sauce.
How a good carrier landing can go bad in a hurry
The most stressful time for a naval aviator isn't when he is being shot at by enemy aircraft, it's when he's trying to land on a carrier.
8 Christmas gift ideas for the Air Force
The United States Air Force takes on one of the most important Christmas missions of all - tracking Santa. So they deserve a lot of Christmas loot.
A box of gear from Alpha Outpost for the tactical vet in your life
CEO Daniel Alarik has made the domination of crowded fields into an art form. His latest venture, a tactical subscription box company, is the Mona Lisa.
How a Christmas-gift-to-be turned into a booming vet-owned business
Looking for the perfect gift for the salty veteran in your life and fast running out of ideas? Put those 72 koozies down and check out Medals of America.
This wounded warrior is turning steel into gold in Alabama
Colin Wayne went from an Army National Guardsman to a fitness model to...a steel worker? Wayne’s company, Redline Steel, creates art from steel.