this post was submitted on 17 Sep 2024
490 points (97.1% liked)

Technology

59675 readers
3292 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 104 points 2 months ago* (last edited 2 months ago) (9 children)

Damn. This must be one of the most terrifying cyber attacks of all time. Like, Mr. Robot level of breach and execution.

In that show they rig the UPS batteries of server buildings to blow up, this is basically the same idea on a smaller scale.

Either that, or they compromised the manufacturer of the pagers and put small explosive devices in there. Truly legendary and insane.

[–] [email protected] 114 points 2 months ago* (last edited 2 months ago) (2 children)

no way it was just the batteries.

batteries burn but don't detonate with shrapnel

it was altered devices with explosives added.

[–] [email protected] 54 points 2 months ago (1 children)

Yeah they got into the supply route and added c4 to all those pagers. Makes me wonder how many pagers or smartphones have added explosives still.

[–] [email protected] 4 points 2 months ago* (last edited 2 months ago) (1 children)

There are several reports that the devices were made with the explosives built-in.

According to the spokesperson of the Taiwanese brand in a press conference, those were all devices produced by a Hungarian licensee of the brand.

Hungary, you know, been voting with Israel in the UN and also has a Fascist government which is massivelly racist against Arabs.

Kind makes sense that those things were manufactured in a country very friendly of Israel and with their authorization, already with the explosis built-in.

The interesting second and third level effects to consider of this are around the impact on things like Globalization (if having to start paying attention to the alliances of the countries the stuff you buy comes from the places which are part of a supply chain stop being irrelevant) and even brand licensing (that Taiwanese company will have their name pop-up associated with this in every single internet search from now on)

Also curious about what will this to to "Made in EU" - Hungary might just have screwed the rest of us much more than ever before.

[–] [email protected] 1 points 2 months ago (1 children)

Mass producing disguised explosives is risky business.

Obviously they wanna price them low, to attract buyers in the target market. But if you price them too low, they become an opportunity for middlemen to resell to another market.

And now you’ve spread several batches of explosives to who-knows-where.

Hopefully they thought of that and restricted the detonation trigger to specific country codes. But that doesn’t erase the fact that there are explosives in the device.

[–] [email protected] 2 points 2 months ago* (last edited 2 months ago) (1 children)

This made me think that the whole unofficial production of everyday devices with explosives in Hungary was a great opportunity for well connected Hungarian criminals wanting to get their hands on what are probably military explosives which is typically highly controlled stuff hence valuable.

I'm wondering if some of the stuff which was suppsed to have been used for this won't pop-up elsewhere in the EU in the hands of some criminal group, possibly even used for a terror attack.

The possible implications of this shit just keep in getting better and better.

[–] [email protected] 2 points 2 months ago

Yeah… What a mess. A horrible, horrible idea.

[–] [email protected] 30 points 2 months ago (2 children)

Probably not. It was almost certainly the case that these pagers were already connected to explosives, probably to be IEDs. All Israel would have had to do is page the pagers to detonate them. I can’t think of any other logical explanation.

[–] [email protected] 23 points 2 months ago (1 children)

I don't think the thousands of pagers built this way really count as "improvised."

That being said, it makes me wonder if this went in any way according to plan - 8 deaths and 2750 injuries is a large scale attack, don't get me wrong. But they've now announced Mossad has compromised the supplier of the pager, which they will undoubtedly audit, and instill new policies on device security. I wouldn't be surprised if that means they discover a lot more compromised electronics, allowing Hezbollah to pinpoint the compromise. Because 2750 survived, you now have 2750 people very interested in finding it.

In all, for 8 deaths, they've made their own work harder.

That being said 2750 injuries could be a large enough number to scare members out of the org.

[–] [email protected] 22 points 2 months ago (3 children)

I heard they recently switched to pagers because cell phones where deemed to be compromised. So I think besides the direct deaths and injuries, this attack also targeted lines of communication and trust in technology as a whole (or anything supplied by your superior even).

[–] [email protected] 12 points 2 months ago

Yeah, that's what I read too. It's a smart way to force the weaponized pagers into the hands of your enemies.

Also sort of shows the attack wasn't too sophisticated. Mossad might not even have compromised the cell phones, they just fed bad intelligence to whoever and they had a likely supplier already compromised.

In all - it doesn't look too good for any intelligence personnel in Hezbollah.

[–] [email protected] 1 points 2 months ago

besides the direct deaths and injuries, this attack also targeted lines of communication and trust

Exactly. The psychological impact of this attack should not be underestimated.

It will have Hamas' leadership and operatives second guessing so many of the mundane things that they interact with on a daily basis.

[–] [email protected] 1 points 2 months ago

Im more surprised that Hezbollah issues them. I'd thought pagers were cheap enough as consumer items that they'd just give their guy a wad of cash and say go pick up such and such pager for me.

Would have at least severely hampered any precision from man-in-the-middle attacks on supply lines such as these. Especially when being embedded within a civilian city.

[–] [email protected] 2 points 2 months ago (1 children)

If those pagers had explosives, I wonder if the explosives were put there as a sabotage or for "destroy if found" functionality

[–] [email protected] 2 points 2 months ago (1 children)

Perhaps the latter? My first thought is still that the pagers intended use was for triggering explosives, and they were simply triggered early by the other side.

[–] [email protected] 3 points 2 months ago

You would not put it inside the pager if you want to use it as a trigger. You would also not ready-make thousands of those and let thousands of people carry them around.

[–] [email protected] 14 points 2 months ago (3 children)

Yeah, I've been wondering how the fuck they pulled this off. If it turns out that the only pagers that exploded belonged to Hezbollah members, then that would signal to me that this was done entirely digitally.

I've heard that batteries (can't remember if it was laptop or phone batteries) contain the energy of a small grenade, but getting it to release that energy all at once without physical access is absolutely fucking wild and has serious fucking implications for device security.

EDIT: To avoid spreading misinformation, I'm providing this edit to say that the batteries absolutely were not the cause of the explosion. This was a supply-chain attack. Explosives were inserted into the pagers. The batteries in these pagers cannot be made to explode like this. I was overly excited when I made this comment.

[–] [email protected] 27 points 2 months ago (1 children)

Getting batteries to release energy isn't very difficult, even getting them to release it quickly isn't very difficult. What's difficult is getting them to release it over the course of a few milliseconds. Which is what you would need for an explosion.

If the battery simply dumped all its power over the course of 30 seconds that's basically just a fire that you can run away from.

Also I wouldn't have thought a pager had that much charge, I wouldn't have thought this sort of thing would be possible as they would tend to just go off with a loud bang, assuming you could even get them to release all the energy at once l, which again I wouldn't have thought was possible.

For fairly obvious reasons I don't think we're ever going to find out how this was done.

[–] [email protected] 3 points 2 months ago

Maybe there will be a faulty one laying somwhere now thrown away by the owner? That will be nice for analysis.

[–] [email protected] 5 points 2 months ago* (last edited 2 months ago) (2 children)

I'll save you time. Licensed factory in Europe, making Chinese beepers, was compromised or owned by Israel. They then put explosives in the pagers and set them to explode when paged a certain code.

They knew hezbollah was the purchaser, and would disperse them amongst its members.

I think its stupid unless it stopped some imminent horrible attack. Otherwise, Israel has given themselves away, and only killed 8 people for it. Maybe they had trouble rigging them to steal their communications.

[–] [email protected] 4 points 2 months ago (2 children)

It wasn't "stupid". As a psy-op, it further complicates Hezbollah's communications, sows fear among Hezbollah members, demonstrates Israel's far-reaching capabilities, makes civilians suspicious of Hezbollah officials, etc. If Israel does something similar a couple more times, Hezbollah will have to resort to bicycle couriers and smoke signals.

It also undermines Hezbollah's credibility. The Lebanese people are not stupid. They know that Hezbollah is a shadow government allowing Iran to control Lebanon and use it as a staging ground for attacks on Israel. That leaves Lebanon in a permanent state of semi-war with Israel, not to mention its involvement in multiple other external conflicts. None of which is helpful for the health and prosperity of Lebanon.

Lebanon is a natural trading nation and always has been. It is a beautiful country full of kind people with excellent commercial instincts. They are held down as a nation by the fact that Hezbollah has turned the country into a pawn of the Ayatollah.

[–] [email protected] 7 points 2 months ago (1 children)

Thats a fair opinion, although I think its likely to cause the opposite reactions than you listed. But again, who really knows.

Also I'm sure most people in most places are good people, just like anywhere, Lebanon included.

[–] [email protected] 2 points 2 months ago (1 children)

Good point. I should have qualified what I said by saying that the Israeli operation may have the effects I listed. But, as you say, it might backfire and have the opposite of the intended effect. I guess that is always a risk with these types of operations.

[–] [email protected] 1 points 2 months ago

Maybe the truth is both will happen, but its not clear which would be the majority opinion, or the opinion of those in power.

[–] [email protected] 1 points 2 months ago* (last edited 2 months ago) (1 children)

The obvious solution is to just procure their equipment from China only as they are naturally not allied with Israel if only because geostrategicaly they'd adversaries of the top Israeli ally, the US.

Given the indiscriminate nature of this attack this might imply purchasing decisions all over the World from much more than merely "members of groups deemed terrorist by the US".

[–] [email protected] 1 points 2 months ago (1 children)

Well sure. Modern war is all about adaptation. Exploding pagers were never going to be a knock-out blow, just a clever psy-op. One among many, I'm sure.

[–] [email protected] 1 points 2 months ago* (last edited 2 months ago) (1 children)

The point being that sometimes things that look "clever" if you only look at the obvious primary effects are not at all clever when you also consider secondary effects.

If only when it comes to "ease of eavesdropping" it might very well be in the best long term interest of the Israeli Security Services that the rest of the World keeps on acquiring Made In Europe and Made In US devices which this action will likely impact (one thing are accusations of "backdoors" in certain devices a whole different thing is seeing on TV a mass attack were a batch of devices all made in a nation allied with Israel contained explosives and that were detonated in all manner of arbitrary places hitting thousands of arbitrary people).

Then there's the possible impact on Israeli Allies' exports of electronics given these pagers were specifically manufactured in Hungary (a very strong ally of Israel) by a company licensing the brand name - is it really a good idea for anybody in a political, state or security position in any nation not allied with Israel to buy any device with remote access capabilities from made in any nation allied with Israel or with a significant part of the supply chain passing thorugh one of those nations. If they're willing to have explosives put in them and detonated in the middle of crowds of civilians, what else are they willing to do - it's the same reason why buying Security Software from an Israeli company is extremelly stupid for any company (even in allied nations) only now Electronics is also included, there's very obvious proof that they will do just about anything (rather than merelly an unproven risk of industrial espionage) and the risk also includes things sourced from nations allied with Israel.

Time will tell just how big those two classes of secondary and tertiary effects really are.

Mind you, as I see it anybody who gets in bed with ethno-Fascists like the Zionists deserves all the damage that comes from them having no limits whatsoever to what they'll do.

[–] [email protected] 2 points 2 months ago

When I say "clever", I dont necessarily mean it was a good move toward their long-term goals. I mean that it was ingenious and skillfully executed, requiring the coordination of many parts, and displaying deft trade craft.

Frankly, arguing whether "ethno-fascist Zionists" or "Muslim fundamentalists" are worse is kind of pointless. Neither is high on the list of things I support.

Most Israelis are not "ethno-fascist Zionists" any more than most Gazans or Lebanese, or even Iranians, are Muslim fundamentalist theocrats. All of those populations are caught in bad situations that were set in motion decades ago. On balance, if forced to choose a side to support, I would support Israel, like most other Westerners. At least they have a functioning democracy and largely adhere to Western values. The Israeli religious right wing is extremely problematic, of course, but it looks to me like they are headed for defeat in the next election. We can't say the same about Hezbollah or the Iranian theocracy or any of Iran's other proxies.

The bottom line is: FUCK ALL RELIGIOUS FUNDAMENTALISM. Doesn't matter whether it is Muslim, Jewish, Christian, or Hindu. They all suck.

[–] [email protected] 1 points 2 months ago (1 children)

Specifically in Hungary, same country that has been voting with Israel in the UN and also has a Fascist government.

It sure makes manufacturing involving explosives much more easily to go ahead if the local government has approved of it.

I'm curious what this will do to the "Made In EU" brand in the rest of the World.

[–] [email protected] 0 points 2 months ago

There was already an article I saw saying it will have a chilling affect on western electronics to at least some degree.

[–] [email protected] 12 points 2 months ago

More like stuxnet level !

[–] [email protected] 8 points 2 months ago (1 children)

I am surprised the name of the manufacture is not out. This basically raise privacy concern.

[–] [email protected] 2 points 2 months ago

They were on TV over here (Portugal) doing a press conference were they explained the devices were made in Hungary by a company which licensed the brand name from them (a Taiwanese company) so the manufacturer's name (which I totally forgot) is definitely out.

[–] [email protected] 3 points 2 months ago

Its stuxnet like

[–] [email protected] 1 points 2 months ago (1 children)

That will give a lot of idea to other people maybe soon having a phone on you will be a big risk

[–] [email protected] 4 points 2 months ago* (last edited 2 months ago)

They've done a similar thing at a smaller scale with individual phones in the past. What is different is this time it's not targeted at a specific person and instead involves thousands of devices going off simultaneously. It's not a big risk unless you have nation state level threats up against you because it's hard to pull off, they have to get a functioning device with explosives in it into the hands of the target and the effort involved in doing that is significant.

[–] [email protected] 1 points 2 months ago

cyber attack ? Lol

[–] [email protected] 1 points 2 months ago

and now Hezbollah will be frightened to touch anything at all