this post was submitted on 11 Sep 2024
663 points (98.3% liked)

Technology

58125 readers
4152 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
663
Navy officer lost job for secretly installing internet on warship to check social media (fortune.com)
submitted 1 week ago by ByteOnBikes@slrpnk.net to c/technology@lemmy.world
144 comments fedilink hide all child comments
 

A U.S. Navy chief who wanted the internet so she and other enlisted officers could scroll social media, check sports scores and watch movies while deployed had an unauthorized Starlink satellite dish installed on a warship and lied to her commanding officer to keep it secret, according to investigators.

Internet access is restricted while a ship is underway to maintain bandwidth for military operations and to protect against cybersecurity threats.

The Navy quietly relieved Grisel Marrero, a command senior chief of the littoral combat ship USS Manchester, in August or September 2023, and released information on parts of the investigation this week.

you are viewing a single comment's thread
view the rest of the comments
[–] Cagi@lemmy.ca 21 points 1 week ago (1 children)

Very yes. They could reveal their location for starters, which could spoil a mission and put lives at risk, but if they use the same device on both this and the ships network, you risk compromising the ship's network or even the Navy itself, giving our enemies all kinds of sensitive info.

We are in the midst of a world war being waged in cyberspace and the US is losing. Incidents like this are a genuine threat.

[–] Reverendender@sh.itjust.works -1 points 1 week ago (3 children)

I was assuming they had their own hidden network going. I can't imagine they would be dumb enough to mess with the existing ship network.

[–] TimeSquirrel@kbin.melroy.org 12 points 1 week ago (2 children)

There are regular unprotected Internet channels, and then there are secure networks like SIPRNet. Devices must not arbitrarily cross from one to the other. That's where a leak can happen. That's one thing I learned working for a company with an Army contract 20 years ago. Once a device was set up for secure access on the military network, our policy was to never have it touch the civilian Internet again. It had to be 100% verified destroyed at the end of its lifetime. I don't know details of how they handle it these days with mobile devices everywhere.

[–] Reverendender@sh.itjust.works 2 points 1 week ago* (last edited 1 week ago)

Wow that was super interesting! Thanks!

[–] NuXCOM_90Percent@lemmy.zip 2 points 1 week ago* (last edited 1 week ago)

Doesn't really change much.

You NEVER connect to sensitive resources via wifi. Different orgs and levels have different rules about whether a device capable of wifi can even be in the same room, but the key is to not connect it to the secure network. This is commonly referred to as "an airgap". And if you are wondering how different ships can communicate with each other and The US? Don't ask questions!

For less sensitive resources? YOLO that shit. But it is also incredibly trivial to set up a security model where users cannot connect to arbitrary networks.

So StinkyNet would, presumably, only be usable by personal devices. Which should have absolutely nothing sensitive on them to begin with. And if anything on any of the ship's sensitive networks was even able to connect to StinkyNet then... the Navy done fucked up.

Which... might explain the rapid action to punish those who violated policy.

[–] CrystalRainwater@lemmy.blahaj.zone 4 points 1 week ago (1 children)

I don't know the exact details of their setup but I would imagine if they have phones on the ship there's a network they can connect to on the ship that's not their starlink internet.

Aside from being able to possibly identify the starlink waveforms with passive RF surveillance or being able to identify the location of the ship through hacking spacex or their satellites, if they went back and forth between being connected on their phones to the ship network and the internet, their phones could have been compromised, leaving the possibility also of them being a perfect pivot point for hackers interested in exfilling important government secrets.

Overall just very bad opsec for a ship and definitely not a good idea.

[–] Serinus@lemmy.world 4 points 1 week ago (1 children)

Important government secrets will be strictly separated from personal/civilian devices. The only classified information being transmitted by personal devices is the location and human knowledge of the owners.

[–] catloaf@lemm.ee 1 points 1 week ago

Yes, right up until someone plugs in the wrong cable, sends an email to the wrong person, or plugs the wrong hard drive into a system. Then your phone rings and you have to talk to people you never want to talk to.

[–] cm0002@lemmy.world 2 points 1 week ago

It was on its own hidden network, if it was on the existing network it would have been discovered a LOT sooner