Contractor inserts Cyber “Time Bomb Attack” in Firmware of Orqa Drone Goggle

January 25, 2024

INCIDENT

A contractor named Swarg maliciously planted a time-bomb in the firmware of Orqa's FPV.One V1 first person view (FPV) drone goggles, causing product failures. The malicious code was designed to brick devices after a timestamp is reached. Later, Swarg posted a paid and unauthorized binary firmware fix online as a "license extension and renewal" that would unbrick devices. Orqa's stated this is effectively a case of a ransomware attack by a malcious insider deploying a wiper payload. Analysis shows that both Orqa and Swarg have done business together and operate from the same location, suggesting they share offices.

Incident Date

May 6, 2023

Location

Croatia

Estimated Cost


No cost values disclosed.

Victims

Type of Malware

No Malware identified

Threat Source

No threat source identified