this post was submitted on 05 Sep 2024
939 points (99.2% liked)

Technology

59517 readers
3153 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] Ep1cFac3pa1m@lemmy.world 398 points 2 months ago (2 children)

That seems like a significant security risk

[–] givesomefucks@lemmy.world 246 points 2 months ago (30 children)

Probably not for the reason you think.

Like, it wouldn't be patched into anything official

But it means Musk knew where that ship was 24/7, and I'm pretty sure that's why Ukraine's military stopped using it. Musk tipped off Putin to troop movements.

[–] cmnybo@discuss.tchncs.de 124 points 2 months ago (1 children)

It's emmitting radio signals that an enemy could use to help locate the ship.

[–] givesomefucks@lemmy.world 17 points 2 months ago (6 children)

What?

Surface ships are in constant communication with stuff...

You can't just find a signal in the middle of the ocean. Musk can find a starlink signal tho, because he can see what Starlink connects to and it's gps location.

[–] 4am@lemm.ee 98 points 2 months ago (6 children)

Yeah but if they go on mission and “go dark” then you still have this starlink thing that may or may not be disabled by the person smuggling it on board. It may also be connected to official things if the owner has bad intentions, or if someone else who does finds it and co-opts it.

There is a lot that could go wrong with unauthorized radio transmission equipment on a warship, and not all of it is obvious.

load more comments (6 replies)
[–] feannag@sh.itjust.works 29 points 2 months ago

Not always

Ships absolutely practice turning everything off.

load more comments (4 replies)
[–] potentiallynotfelix@lemdro.id 55 points 2 months ago (1 children)

Musk tipped off Putin to troop movements

Wait he did? Can you provide a source for this? I can only find information about him stopping starlink service in crimea

[–] Summzashi@lemmy.one 25 points 2 months ago (2 children)

They can't, because it doesn't exist.

load more comments (2 replies)
[–] Ep1cFac3pa1m@lemmy.world 15 points 2 months ago

The reason I think is because any unofficial and potentially unsecured communications access point seems like a vulnerability. If some moron posts a picture using that unofficial access point I’d be worried it could be traced to the ship’s location.

load more comments (27 replies)
load more comments (1 replies)
[–] paddirn@lemmy.world 194 points 2 months ago (2 children)

And I'm sure whoever put it there faced way more harsher penalties than a certain someone who willfully hid highly classified documents in his bathroom for months and lied about it to investigators.

[–] Saik0Shinigami@lemmy.saik0.com 21 points 2 months ago

Just like a certain someone who had classified documents that they weren't even supposed to have without a handler!

load more comments (1 replies)
[–] Deebster@programming.dev 166 points 2 months ago* (last edited 2 months ago) (3 children)

The source story is worth a read.

Marrero’s background is in Navy intelligence, and she earned a master’s degree in business administration with a concentration in information security and digital management

Incredible.

she soon changed the “STINKY” Wi-Fi network name to another moniker that looked like a wireless printer — even though no such general-use wireless printers were present on the ship

Why not just switch off broadcasting the SSID?

[The CO and XO] then conducted another sweep inside the ship. Although the network that appeared to be a wireless printer appeared on their personal devices during their search, neither made additional inquiries regarding that network

No-one's coming out of this looking good.

Marrero’s secret Starlink dish was removed the same day, and Marrero told another unidentified crew member the next day that it was authorized for in-port use — prompting sailors to re-install the illegal Starlink.

It just keeps going!

[–] Maggoty@lemmy.world 52 points 2 months ago (1 children)

To be fair, if the lead NCO of a unit is just going to flat out lie then a lot of people are going to believe it. I can't imagine being a lower NCO or enlisted and thinking command actually authorized the chiefs to break operational security for entertainment, but only them. Every chief in that crew should be busted and flagged against promotion again. The investigation was completely right to say if they didn't know, they should have.

[–] Dozzi92@lemmy.world 42 points 2 months ago (3 children)

I may have missed it in this article, though I believe I read elsewhere, that she got busted down one rank and that's it. I know military in general is having retention and recruitment issues, but to me this is more than just a busting down offense. That the senior enlisted on a ship would so nonchalantly disregard OPSEC demonstrates either a clear lack of understanding, or worse, something more nefarious.

We saw a naval officer relieved of command for having the scope backwards on his rifle. This, to me, rises to a much higher level.

[–] flyingchaucer@lemmy.sdf.org 98 points 2 months ago (4 children)

We saw a naval officer relieved of command for having the scope backwards on his rifle.

Well in that case, it was just a matter of bad optics.

load more comments (4 replies)
[–] Maggoty@lemmy.world 18 points 2 months ago

There's a lot of punishment that doesn't show up in the top line in the military. She may be flagged to lose her security clearance, (dishonesty, incompetence, and corruption) which would be the end of her career. They may also outright flag her as not eligible for re-enlistment. She's certainly not ever going to live that down and it's not a counseling form that disappears in six months. I'd be very surprised if she ever promotes again.

All that said, where I was, in the infantry, lying to your commander like that, while endangering the unit, would be either an Other Than Honorable discharge or a Big Chicken Dinner. (Bad Conduct discharge, do not pass go, do not bother with the VA, do not collect retirement, hope future employers never ask about your discharge)

load more comments (1 replies)
[–] pdxfed@lemmy.world 17 points 2 months ago (7 children)

First thought I had after read through, how much did that masters cost and you didn't learn that you can turn off the broadcast name so only people who know it's there can connect? Probably not even a real degree, freakonomjcs did an episode maybe 10 years ago that said probably 5% of degrees are fake, bet it's 20% now, lying is culturally through the roof.

load more comments (7 replies)
load more comments (1 replies)
[–] dhork@lemmy.world 143 points 2 months ago* (last edited 2 months ago) (4 children)

What's better is that, thanks to Elon Musk, "STINKY" is the default name for its Starlink wifi. These people didn't even change that.

https://futurism.com/the-byte/elon-musk-starlink-wifi-stinky

[–] Ep1cFac3pa1m@lemmy.world 42 points 2 months ago (1 children)

Don’t worry! I’m sure the default username and password didn’t get changed either.

load more comments (1 replies)
[–] MerchantsOfMisery@lemmy.ml 25 points 2 months ago (1 children)
load more comments (1 replies)
[–] NuXCOM_90Percent@lemmy.zip 15 points 2 months ago (1 children)

Can't speak to starlink specifically, but I know some shittier router brands would often reset to factory defaults every time you updated the firmware. Can easily see starlink doing that with a pushed firmware with the expectation some additional cell phone app would restore the correct settings.

So they very well might have turned off broadcasting but it got popped back on while they were on shift and it was detected.

load more comments (1 replies)
load more comments (1 replies)
[–] return2ozma@lemmy.world 108 points 2 months ago (1 children)

To make matters even worse...

The chiefs found that the Wi-Fi signal coming off the Starlink satellite transceiver couldn't cover the entire ship, so during a stop in Pearl Harbor, they bought "signal repeaters and cable" to extend coverage.

[–] doctortran@lemm.ee 18 points 2 months ago

This many chiefs (not rank-and-file, chiefs), putting this much effort into breaking Navy protocol, together, is crazy. And for what? Memes?

I know deployment at sea can be boring but Jesus fucking Christ, read a damn book or something.

[–] Pacattack57@lemmy.world 86 points 2 months ago (2 children)

Here’s the meat and potatoes of the article.

In 2023, they decided that the best way to deal with the problem was to secretly bolt a Starlink terminal to the "O-5 level weatherdeck" of a US warship.

They called the resulting Wi-Fi network "STINKY"—and when officers on the ship heard rumors and began asking questions, the leader of the scheme brazenly lied about it. Then, when exposed, she went so far as to make up fake Starlink usage reports suggesting that the system had only been accessed while in port, where cybersecurity and espionage concerns were lower.

Rather unsurprisingly, the story ends badly, with a full-on Navy investigation and court-martial.

[–] ChickenLadyLovesLife@lemmy.world 18 points 2 months ago (1 children)

when officers on the ship heard rumors

Lol not only is this an incredible violation of security, they couldn't even keep their fucking mouths shut about it.

load more comments (1 replies)
load more comments (1 replies)
[–] blazeknave@lemmy.world 85 points 2 months ago (6 children)

Dude isn't American. More money than a sovereign nation. Space level ballistic capabilities. Openly aligned with our enemies and their values.

How the fuck does he have a penny of my federal fucking tax dollars? We're funding fucking terrorists that don't even need the subsidies.

[–] imaqtpie@lemmy.myserv.one 28 points 2 months ago (11 children)

What dude are you referring to? I'm confused how your comment relates to the article.

[–] 96VXb9ktTjFnRi@feddit.nl 15 points 2 months ago
load more comments (10 replies)
[–] sour 25 points 2 months ago (1 children)

I mean, u know that SpaceXs main income is flying shit around for NASA? If that was unexpected for you, I have bad news.

load more comments (1 replies)
load more comments (4 replies)
[–] rekabis@lemmy.ca 69 points 2 months ago (2 children)

Sailors on the ship then began finding the STINKY network and asking questions about it.

Oh, c’mon. it is trivial to make an SSID “hidden” for any networking tech that you have administrative control over. That way, only those “in the know” will know the SSID name to type in, in order to access said wireless network. It would not be “discoverable” by standard wireless-connectivity gear such as the default wifi interface in mobile phones.

[–] ayyy@sh.itjust.works 83 points 2 months ago (3 children)

Hidden WiFi networks are not actually hidden in the literal sense. They still broadcast beacons that your wifi chip will see as basically “hidden network beacon lives here”. Your network connect interface just decides not to show you a list with a bunch of useless “(hidden)” entries you can’t do anything with.

Also, when a new client wants to connect to the hidden network, the first thing it does is broadcast an unencrypted message saying “HEY, I’M LOOKING FOR [hidden network name]” so it’s completely trivial to unveil the name of hidden networks given enough time.

[–] Thetimefarm@lemm.ee 30 points 2 months ago (1 children)

I think it'd be more for obfuscation than completely hiding it. As long as there are other hidden networks on the ship you just name it something generic that blends in. I mean this whole thing is a really stupid idea, but naming it something like "COM.NAB_ISO:4133" would draw less attention.

[–] ayyy@sh.itjust.works 29 points 2 months ago* (last edited 2 months ago) (4 children)

It’s absolutely mind-boggling that the existing WiFi infrastructure on the military ship didn’t trigger any alarms. This is the kind of thing that you can get from “pro-sumer” grade hardware/software like Ubiquiti, let alone corporate-grade or military-grade stuff. The feature is called “Rogue Access Point Detection” and it’s built into literally every WiFi solution on the market. Like, your local library is analyzing this stuff it’s that basic.

Edit: To more directly address your point, the name shouldn’t matter at all. Rogue AP detection doesn’t give a shit about the display names of things, it looks at the actual hardware addresses and compares them to known things that are owned by your network.

load more comments (4 replies)
[–] rekabis@lemmy.ca 20 points 2 months ago (1 children)

That’s why I put that term in quotes, and was specific about default networking interfaces. I didn’t go into detail because that confuses a lot of people.

Source: working with wireless networks professionally for pretty much the last quarter century.

load more comments (1 replies)
load more comments (1 replies)
load more comments (1 replies)
[–] 14th_cylon@lemm.ee 61 points 2 months ago (1 children)
load more comments (1 replies)
[–] unrigged6112@lemmy.world 60 points 2 months ago* (last edited 2 months ago) (11 children)

What really surprises me is that the ships equipment never picked up on those unauthorized signals. Hell they can pick up pavarotti in pearl harbour on their sonar. (Red oktober reference) . but they cant pick up multiple unknown signals in the 2.4 and 5 GHz band

[–] TranscendentalEmpire@lemm.ee 40 points 2 months ago (9 children)

Command Senior Chief

The person who came up with the scheme is also the most senior NCO on the ship. All the enlisted people in charge of monitoring that activity knew, they just knew not to ask questions.You would be surprised how much pull an E-8 or E-9 has in the military.

load more comments (9 replies)
load more comments (10 replies)
[–] SnotFlickerman@lemmy.blahaj.zone 48 points 2 months ago (4 children)

Between Trump stealing national security secrets and shit like this, it's honestly shocking the USA hasn't already become a full-fledged fascist hell-hole. It's currently only half-fledged.

But seriously, it must be fucking child's play for other nations to spy on us with dumb fucking shit like this happening.

[–] Imgonnatrythis@sh.itjust.works 19 points 2 months ago (1 children)

Hey, give us a chance. We have another election right around the corner and things are really looking good for a solid commitment to fully flegged hell-holism.

load more comments (1 replies)
load more comments (3 replies)
[–] Wispy2891@lemmy.world 28 points 2 months ago (1 children)

i was wondering why would you choose such a stupid WiFi access point name, then I read that it was Elon musk that decided that the default starlink AP name has to be that stupid so people would change it

load more comments (1 replies)
[–] tabarnaski@sh.itjust.works 27 points 2 months ago (2 children)

The fact that they didn't even try to hide their ssid (or at least, the report doesn't say they did) shows how stupid people can be with cybersecurity.

[–] Username 21 points 2 months ago

Apparently "STINKY" is the default StarLink SSID (Another Musk joke), so yeah...

load more comments (1 replies)
[–] Skullgrid@lemmy.world 25 points 2 months ago

can we just fucking all take a break for a month? just have things go to being boring?

I attended a fucking ethics of ai talk at my work, only to run into a fucking knockoff nazi complaining about the founding fathers images being generated with black people, and talking about how silicon valley is too left wing.

either you're so stupid that you don't understand it's a fucking alt-right dog whistle, or you're a fucking nazi who gets very, very upset if you see a black person in any context. Either way, just shut the fuck up.

[–] Maeve@kbin.earth 22 points 2 months ago

Still, the ambassador had nothing on senior enlisted crew members of the littoral combat ship USS Manchester, who didn't like the Navy's restriction of onboard Internet access. In 2023, they decided that the best way to deal with the problem was to secretly bolt a Starlink terminal to the "O-5 level weatherdeck" of a US warship. They called the resulting Wi-Fi network "STINKY"—and when officers on the ship heard rumors and began asking questions, the leader of the scheme brazenly lied about it. Then, when exposed, she went so far as to make up fake Starlink usage reports suggesting that the system had only been accessed while in port, where cybersecurity and espionage concerns were lower. Rather unsurprisingly, the story ends badly, with a full-on Navy investigation and court-martial. Still, for half a year, life aboard the Manchester must have been one hell of a ride.

But wait! There's more!

load more comments
view more: next ›