Contractor inserts Cyber “Time Bomb Attack” in Firmware of Orqa Drone Goggle

January 25, 2024


A contractor named Swarg maliciously planted a time-bomb in the firmware of Orqa's FPV.One V1 first person view (FPV) drone goggles, causing product failures. The malicious code was designed to brick devices after a timestamp is reached. Later, Swarg posted a paid and unauthorized binary firmware fix online as a "license extension and renewal" that would unbrick devices. Orqa's stated this is effectively a case of a ransomware attack by a malcious insider deploying a wiper payload. Analysis shows that both Orqa and Swarg have done business together and operate from the same location, suggesting they share offices.

Incident Date

May 6, 2023



Estimated Cost

No cost values disclosed.


Type of Malware

No Malware identified

Threat Source

No threat source identified