EXCLUSIVE Expert reveals how Iran's missiles may have been hacked mid-flight over Israel and sent plunging into the Mediterranean Sea
The war between Iran and Israel, which began in mid-June following a series of Israeli strikes on military, nuclear and civilian positions, saw both nations fire salvos of missiles and drones at each other.
Like many missile systems found across the world, Iranian missiles rely on Global Navigation Satellite System (GNSS) data to find their way to their targets.
Sean Gorman, the co-founder and CEO of Zephyr.xys, a tech firm that is working to improve location services on mobile phones, believes that he and his team witnessed a new defensive tactic that involved tricking missiles into flying against their programming.
Spoofing normally works by sending a powerful radio signal that is stronger than GNSS signals from satellites, forcing a device to listen to the fake information.
This means that devices believe they are at a false location.
Ordinarily, spoofed GNSS data looks, to the device, like it has instantly teleported to another location.
But Sean believes that what he and his team have seen is a highly sophisticated version of this meant to mimic the arcing flight paths of missiles and send them to safer locations.
Sean believes that what he and his team have seen is a highly sophisticated spoof meant to mimic the arcing flight paths of missiles
Sean said: 'Missiles are guided munitions. They all track latitude and longitude and elevation the same way we navigate in our cars or the same way aeroplanes navigate.
'You're basically providing that same navigation system in ammunition so that it lands in exactly the right place. Jammers and spoofers have been incredibly effective at preventing guided munition from landing where you where they wanted to land and maybe where you instead getting it to go somewhere else or to fail.'
Sean said that his team began tracking spoofing and jamming practices while volunteering in Ukraine, and found that phones loaded with their software were good at tracking these types of attacks.
Following an American government grant to further this research, phones loaded with Zephyr software were sent across the world to places known for their frequent electronic interference attacks.
One mobile phone with Zephyr's app made its way to Haifa in northern Israel, which like many cities in the nation, came under fire from Iranian missiles.
It was through this mobile phone that Gorman and his team noticed a peculiar signal that different from spoofing and jamming techniques seen in the past.
Sean told MailOnline: 'The phone was in Haifa and the positions that the phones were reporting were off in the ocean. And instead of it being teleported to a fixed location, instead we see this arc.
'There was a synthetically generated position that went in a curve. It's one measurement from one phone, but it's a new behaviour or pattern that we haven't seen.'
He added that while he wasn't 100% sure this was a new 'push spoofer... it's certainly not a pattern that we've seen before in that you know'.
This arcing pattern is likely to have been developed to trick the drone into following the fake data.
'If you're teleporting with a big jump and it's fixed, that would be a much different pattern than a guided munition that is on a trajectory. You want that thing to think it's still on the trajectory. It continues on the path that the spoof operator is pushing,' Sean said.
'They don't realise they're being spoofed because they're continuing to go on a trajectory. That would fool a drone.'
While it's not clear from Sean's analysis exactly who perpetrated the hack, the signal is believed to have come from the Middle East.
Many nations around the world are developing this kind of technology, Sean said, with the invasion of Ukraine being one of the key crucibles.
He said: 'There are lots of countries that have sophisticated technical engineers and specialty within GNSS. And each of those countries are constantly trying to evolve their [rivals'] electronic warfare capabilities.
'We see this with the Russians and Ukrainians, who are constantly iterating and trying to defeat each other's countermeasures in this kind of cat and mouse game.
'Countries are investing and trying to provide countermeasures and defeats of those countermeasures so they can still operate in a battle situation like we're seeing in the Middle East.'
But with the increased competition for these types of techniques comes the risk it will be used outside a military context, even in the Iran-Israel war.
Last week, Frontline tanker Front Eagle and dark fleet tanker Adalynn collided last week near the Strait of Hormuz.
The two oil tankers were brought to a halt, following a fire on the desk of the Front Eagle which was later extinguished.
But in the days leading up to the collision, the UK's Maritime Trade Operations issued a warning that 'increasing electronic interference' was being reported in the STrait of Hormuz.
Sean said this event pointed to an increasing willingness for warring parties to use spoofing and jamming techniques that could have wider effects on civilians and commercial routes.
'We're increasingly seeing this happen all over the globe and cause issues with global commerce with supply chains, with aviation. So even outside of the military context, we're seeing this more and more in our daily lives.
'Jamming and spoofing are both prolific, though we see spoofing less frequently and it's a bit harder to detect than jamming.
'So while it was interesting to see spoofing activity happening they're both risks to civilian and commercial operations.'
'Collisions could be an issue both from an aviation standpoint, as well as a maritime standpoint', Sean said, adding that the ability to 'detect spoofing will be critical for civilian safety. That'll be a really important area of R&D investment and where what we'll need technological capacity both on a civilian and a defence perspective.'
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Reuters
14 hours ago
- Reuters
Tower Semiconductor forecasts quarterly revenue above estimates on steady chip demand
Aug 4 (Reuters) - Israeli contract chipmaker Tower Semiconductor ( opens new tab forecast third-quarter revenue above Wall Street expectations on Monday, driven by steady demand for its chips used in the automotive and industrial markets. The company's U.S.-listed shares were up 5% in early trading. Tower Semiconductor has also seen higher demand for its advanced chip technologies used in optical fiber communications from companies building data centers and AI infrastructure. These chips help move large amounts of data quickly and efficiently, making them essential components in the modern data centers and networks powering today's digital world. The company specializes in manufacturing analog and mixed-signal integrated circuits for a wide range of applications, including automotive, industrial, consumer electronics and optical communications. "The momentum we have gained in our RF infrastructure business, driven by data centers and AI expansions, is particularly noteworthy, with customer forecasts continuing to increase," CEO Russell Ellwanger said. Tower Semiconductor forecast third-quarter revenue of $395 million, plus or minus 5%, while analysts expect revenue of $392.5 million, according to data compiled by LSEG. It reported 6% growth in revenue to $372.1 million in the second quarter, compared with an expectation of $371.6 million.
Finextra
19 hours ago
- Finextra
Maven leads £5 million investment in Approov
Approov Limited ('Approov'), a mobile app security software business, has secured a £1.2m investment from the Investment Fund for Scotland, managed by Maven Capital Partners ('Maven'). 0 This is part of a £5 million funding round with participation from Souter Investments, and existing investors Lanza techVentures and Scottish Enterprise. Approov has developed patented mobile security technology that protects apps and APIs from AI-driven threats by using a cloud-first approach, offering a stronger and more reliable alternative to traditional code obfuscation. Its mobile security solution ensures only genuine, unmodified apps running in trusted environments can access your backend services. It works by continuously verifying app and device integrity to stop bots and tampered apps with real time analytics and cloud based secret management to protect mobile apps and APIs. As winner of the Cyber Innovation Award at this year's Scottish Cyber Awards, Approov's solution has already established a strong presence in the global automotive and financial service sectors. The mobile RASP market is a fast-growing subsegment of the cyber security industry, driven by the proliferation of mobile threats and increased demand for embedded, in-app security. Enterprises are proactively embedding security within app development lifecycles to combat rising incidents of reverse engineering, app tampering, and overlay attacks. Approov's technology protect apps from tampering and fraudulent API access, offering a critical defence in today's rapidly shifting cyber threat landscape. This funding milestone will enable Approov to bolster its R&D team in Edinburgh, driving the creation of advanced technologies to secure mobile applications and APIs against evolving threats in real time, including those powered by AI. The investment will also allow the business to invest in its sales and marketing operation as it grows its market reach, diversifies into new sectors and expands its international footprint. Craig McGill, Investment Manager at Maven, said: 'Approov is a leading innovator in mobile app and API security with proven applications in multiple target sectors. With their strong IP and the growing demand for API-level defences across the industry, the business is uniquely positioned to lead this next era of mobile security. We look forward to working with Ted and the team to drive the business forward at such an exciting point in the company's growth journey.' Ted Miracco, CEO of Approov, said: 'As the threat landscape continues to evolve, developers and enterprises alike are recognizing that mobile app security cannot be an afterthought,' said 'This funding marks a pivotal moment in our mission to ensure that every mobile app instance is authenticated and that backend APIs are protected from fraud, abuse, and unauthorized access.' Sarah Newbould, Senior Investment Manager at Nations & Regions Investment Funds, the British Business Bank, said: 'Approov is a strong example of a Scottish company developing smart technology to tackle a global challenge. As mobile apps and APIs become central to business, protecting them from increasingly sophisticated threats, including those driven by AI, is critical. We're pleased the Investment Fund for Scotland is able to support Approov as it grows its team in Edinburgh and expands into new markets. This investment reflects IFS's commitment to backing ambitious companies with the expertise to drive Scotland's tech sector forward.'
Reuters
4 days ago
- Reuters
China state media says Nvidia must provide 'security proofs' to regain trust
BEIJING, Aug 1 (Reuters) - Nvidia must produce "convincing security proofs" to eliminate Chinese users' worries over security risks in its chips and regain market trust, a commentary published China's state-run media People's Daily said on Friday. Foreign companies must comply with Chinese laws and take security to be a basic prerequisite, the commentary said. In a statement sent to Reuters, a Nvidia spokesperson said: "Cybersecurity is critically important to us. NVIDIA does not have 'backdoors' in our chips that would give anyone a remote way to access or control them."
