Network Security, Vulnerability Management

Researchers hack into self-aiming rifle through Wi-Fi

Security researchers Runa Sandvik and Michael Auger discovered a way to remotely hack into a TrackingPoint self-aiming rifle.

The couple was able to exploit vulnerabilities in the Linux-powered gun's software through its Wi-Fi connection, used to allow users to stream video of a shot to a nearby device.

The Wi-Fi network uses a default password that lets anyone within range to connect to the network and ultimately use the gun as a server, accessing APIs to alter the ballistic calculations in the targeting system. The rifle can then be manipulated to make the shooter hit unintended targets with the only hint of a compromise being a sudden jerk in the scope's view. An attacker can also clear the gun's software or lock a user out.

TrackingPoint Founder John McHale told Wired that the company would work with the researchers to patch the rifle's flaws.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.