Russia is using SpaceX’s Starlink satellite devices in Ukraine, sources say::undefined

  • rdri@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    2
    ·
    edit-2
    9 months ago

    The idea that they aren’t able to come up with a credit card with a Ukrainian name that looks 100% legitimate to a billing company is farcical.

    I see you don’t know how credit card numbers work. You may also not be aware of the fact that credit cards aren’t working in Russia for almost 2 years.

    Let me just ask you point blank, do you think the CIA could manage to purchase a Starlink, activate it, and use it, without anyone having any idea it was the CIA that did all that?

    Just one or two is easy to manage. A dozen is much more difficult already, provided Starlink manages some security and has access to metadata (data that ultimately can’t be faked such as location, accounts, device id).

    • KairuByte@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      3
      ·
      9 months ago

      … meaning that one of their many worldwide operatives could just get a credit card. Like, say, in Ukraine.

      You’re focused way too hard on “following the law and doing things by the book” without realizing Russia is more of a “do what it takes.”

      • rdri@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        2
        ·
        9 months ago

        Yeah okay. Let’s say we covered the billing. What about devices id, their origin and location? Those are not purchased through Ukraine and Starlink is ought to know that.

          • rdri@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            2
            ·
            9 months ago

            They can’t be. Ukraine must have them under full control because they rely on them too much.

            Also it’s much easier to assume that these modules, like any other modern tech these days are bought by Russia through other countries who it still does business with like China, Turkey etc.

              • rdri@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                arrow-down
                1
                ·
                9 months ago

                Welp, Musk clearly isn’t even interested in exploring the possibility and just calls it fake news. I guess you won the argument by essentially saying “Nobody knows and no one needs to try”.

                • KairuByte@lemmy.dbzer0.com
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  arrow-down
                  1
                  ·
                  9 months ago

                  Not at all my point. My point was that it can be unknowable. And we have no idea if anyone has tried.

                  • rdri@lemmy.world
                    link
                    fedilink
                    English
                    arrow-up
                    1
                    arrow-down
                    1
                    ·
                    9 months ago

                    You literally said it in your first comment here:

                    At that point, you cant tell the difference.

                    I also don’t exactly buy the possibility of Russian intelligence agencies being able to do stuff like this adequately. As anything else in Russia, they degraded seriously under Putin’s regime. They might not even be involved - I wouldn’t be surprised if those Starlink modules were just a nice opportunity found by whatever volunteers buying stuff like drones from Aliexpress and sending it to Russian army. Reports say they were purchased from UAE.

        • fatalError@lemmy.sdf.org
          link
          fedilink
          English
          arrow-up
          1
          ·
          9 months ago

          Since when can you not spoof any of that? Grab a used android phone from local used market. Put any rooted rom on it. Spoof the gps… Device id is irrelevant at that point. As for origin, not sure what you mean by that, you can just order the starlink equipment to a random address in a different country, it will look legit. As others said, it’s trivial to bypass/spoof all that metadata.

          Once you got the connection up and running you just use a vpn to hide everyrhing.

          The only thing they could do is block starlink for a whole region, that would affect everyone in there. But you still couldn’t distinguish who is using the service.

          • cole@lemdro.id
            link
            fedilink
            English
            arrow-up
            1
            ·
            9 months ago

            you don’t even need to root to spoof gps, you can just do that on android

          • rdri@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            9 months ago

            Since when can you not spoof any of that? Grab a used android phone from local used market. Put any rooted rom on it. Spoof the gps… Device id is irrelevant at that point.

            Starlink modules are not Android devices.

            Device ids should be required for pairing with the satellite from my understanding. Same with IMEI on smartphones - except it should be useless to try to fake it as the number of devices is magnitudes lower than smartphones and it should be possible to pin-point any misbehaving device.

            Spoofing GPS is not exactly useful. Starlink satellites are very low-orbit so again misbehavior should be detectable. I mean you can connect to some satellite but if you report location that should be served by a different satellite then you got yourself caught.

            you can just order the starlink equipment to a random address in a different country

            Starlink is shipping devices to Ukraine directly for the military it seems. It should know the difference between these and others that are shipped all over the world by anyone.

            Once you got the connection up and running you just use a vpn to hide everyrhing.

            VPN is out of scope for this I think. It’s about locating the device physically by the provider, not about specific sites trying to watch actual internet activity.

            they could do is block starlink for a whole region

            They are already doing this but not the whole region. Occupied territories of Ukraine are selectively blocked according to their own availability map.