swimming IoT or how to hack a Yacht

Presented at TROOPERS18 (2018), March 13, 2018, 11:30 a.m. (Unknown duration)

This Talk will show current security issues on modern vessels or yachts. Attacking vectors like GPS, AIS, Autopilot, IT equipment on board and others will be addressed. Modern Ships are "swimming IoT"

In my Talk I will present attack against modern vessel and yachts. following Attack scenarios against yachts and vessels will addressed:  - GPS Spoofing - AIS (automatic identification system)spoofing - vessel backbone, the NMEA protocol and possible attacks - Autopilot (currently working on it) - internet routers on board - entertainment network - attacking SatCom While modern vessels connected to Internet and their NMEA backbone is like a CAN Bus in Cars, this would be a interesting part. NMEA Gateways connecting the Backbone of the Ship with the IP Network.

Marine Routers are worst, as my research will present a couple of holes in a maritime router model that is common in yachts to get access to the internal network. Targeting Super or Mega Yachts in harbors or offshore could be a new threat for celebrities, if private information from onboard are stolen.


  • Stephan Gerling
    48 years old electronic specialist, worked at German Army as electronic specialist on Helicopters. 3 missions, Irak and 2 times former Yugoslavia more than 30 years a firefighter 17 years now security evangelist for my employer everything started with a C64 in 1983 I want to know how things works and void warranty I am the cavalry member


Similar Presentations: