Drone Threat Intel Report: DroneSec Notify #52
This summary has been extracted from our weekly public threat intelligence report. For more information on the platform or weekly email PDFs, please visit: dronesec.com/pages/notify or email us at [email protected] or join the slack group at dronesec.slack.com
Note: To our ‘free’ subscribers, this email pauses from next week (16/12/2020) for a 2-week period break, resuming on the 6th January 2021. For all current Notify customers, the intel will continue as normal, 24/7 via the Notify Platform.
Issue #52 translates to 52 consistent weeks of UAV Threat Intelligence summaries delivered to both our free readers and Notify customers. The DroneSec team is made up of hackers, ex-military-drone and fighter pilots, so you might think it’s all time spent in the field - but I’m always thankful to their ability to deliver actionable intelligence reporting on time and of importance to our clients. One year of delivery is worth of a few short words if you can bare the self-plug.
One of our objectives is to log and record all drone incidents (as soon as they happen), providing an indexable database for CUAS, law enforcement and aviation authorities looking to baseline the threat. So far, we’ve been able to do that with over 380 organisations receiving real-time, weekly or monthly UAV threat intelligence. This data has been utilised in training police forces with our UAV Threat Actor Glossary, refining CUAS AI/ML datasets, educating security teams and, in some scenarios, receiving word that its aided forensic analysis and attribution of operators. We’re committed to safe and secure drone operations and hence why we make a version of this report free to the public, every week.
Over the past year we’ve received countless community contributions with insider information, threat actor TTPs, first responder accounts and photographic evidence of malicious drone technology. This makes us proud to be working with such a collaborative community and was reflected even more in the amazing speakers who contributed to the Global Drone Security Network (GDSN #2). To all of our free readers and customers, we thank you for being a part of the journey and your interest in our work.
On to this weeks’ news. A brilliant, and long-needed publication on protecting against the threat of drones by the Interagency Security Committee has emerged, with recommendations for things such as non-CUAS protection activities and cyber-security vulnerability assessments. These, along with many of the great recommendations within the report, fall in line with security activities that have often gone unnoticed within the area of drone security. It’s a great resource for security teams and one for the ‘shelf’.
In forward-looking news, we observe DJI expected to announce their new FPV racing drone. This is quite an interesting watch as most threat actors navigate towards cheap, easy, functional drones that just ‘work’. DJI currently has that claim and pairing with fast, flexible FPV racing characteristics, the system might just become a favorite of prison delivery gangs or even terrorists – depending on its functionality. In another incident, footage from a Hezbollah drone has revealed surveillance on Israeli Defence Force military bases, publishing the footage whilst claiming their drone made it back across the border undetected – an activity that took place during an IDF exercise focused on combating and preventing drones entering from Lebanese airspace. All these and more in today’s issue.