The ship has a full blackout for over a minute before impacting the bridge, followed by a second shorter loss of power.
Just after the lights come back on, you can see heavy soot which would likely be one of the main diesel generators being brought up.
I've obtained one of these "EMP generators" that are intended to cause glitches in gaming machines, either for free gaming or to dump coins.
It's pretty odd.
A blackout at this point in time is about a worst case situation. You'd lose the rudder, main engine and bow thrusters, leaving you unable to do anything.
The 440V emergency generator would be first to start, but this would only restore power to the steering gear immediately.
The steering gear will run off 440V emergency generator but only one of the two hydraulic pumps (normally port) will be running, hence you have half the displacement.
Regulations generally say the emergency generator must start and be online in under 45s.
I suspect they were on the emergency generator at the end of the first blackout. It's only a small engine - 500kW or less - and generally the exhaust is not out of the main uptake.
The next step is to bring up one of the main diesel generators. This would have been the soot.
A friend's father had his PC taken over by scammers.... just doing a bit of forensics on it to work out what happened.
First sign is a download of amazon_security.exe which is actually Supremo Remote Desktop.
What are the engine rooms like on these Panamax container ships?
They are quite big!
This is the top of the single main engine. It's a Sulzer 10RTA96C.
That's 10 cylinder, each 96cm across. With a 2.5m stroke.
These are just the exhaust valves.
The second blackout - which is very brief - could have been the first main diesel generator coming back online.
That could very briefly interrupt power, but normally the emergency switchboard would keep continuous power to the steering gear.
You really need two diesel generators online before considering starting the main engine.
I'm not a deckie, but in this situation you'd probably be making the call between just using the rudder to avoid an incident, and getting the main engine back.
I finally caved and bought a Flipper Zero.
Whilst it's useful, there's a fair few bits of it that aren't particularly well explained.
Let's start with the Mifare Classic reading!
What's it doing, and how is it doing it?
Another thing that may not be clear to all - there would have been a local pilot onboard who will have been navigating the vessel at this point in time.
There would still have been officers from the ship on the bridge, including the officer of the watch, who had ultimate control
Why do ships blackout?
There are many reasons. I have to say, it's pretty rare that a full blackout would happen with multiple diesel generators running.
If you have forward speed, the rudder will still be working.
You can also attempt to use the bow thruster(s) but these are normally 2MW+ and need more than one diesel generator running to work.
There is a battery system onboard, but this will generally only power control systems and essential bridge equipment. You don't get any rudder or propulsion from it.
In a situation where you are maneuvering (and they were, as pilots were onboard), you'd normally have at least three of the diesel generators running. If one stops, you should still have enough power to keep everything running.
So just to be clear, recovering from a full blackout is:
1. Start emergency generator (battery start, should be automatic)
2. Start one diesel generator (normally air start, hopefully you have air in the tanks, should be automatic)
3. Start more diesel generators.
After the
#FlipperZero
threads, there's been a few people questioning the ethics and legality of these devices, particularly with respect to NFC cloning.
I think explaining some of the history of NFC security - particularly Mifare Classic - attacks might help.
We had one ship that just had a really troublesome power management system (PMS), and it would sometimes make decisions that made no sense - but this only caused issues when we were on one generator (normally the shaft generator, powered by the main engine).
A very timely accident investigation has been released by the Norwegian Safety Investigation Authority into the blackout and loss of propulsion on the cruise vessel Viking Sky.
This was almost catastrophic, but luckily things turned out OK.
4. Start ancillery systems (lube oil system, seawater cooling, low temp cooling, high temp cooling, fans)
5. Start main engine (always air start, hopefully air in the tanks.
A lot to get done!
Peeling the shrink wrap off, we can see how homebrew this is.
There's some kind of transformer on the top, with a large coil with a smaller one. Almost Tesla coil like.
Another trigger, once, was a control air leak. The control air pressure dropped and dropped and then the main engine and all diesel generators stopped within a minute of each other.
But we were in the middle of the ocean - it was no worries.
I'm trying to decode some digital modes from an SDR and I think I've found the most capable but least user friendly software, ever.
Now, it is free. And it seems to be the best available. BUT OMG, the UI.
This is the config screen.
I am in the perverse situation where I've spent the last 8 years of my life convincing people that ships could be hacked, and now I'm convincing people that the may not have been hacked.
Oh man.
Safari automatically extracts zip files after download.
That 4GB .zip that I needed to be the same at the byte level, gone.
Who designs this stuff? It's all so opaque.
There is a button to trigger it, two DIP switches (which I think you should only turn one on) and a trimmer pot. I can't tell what the trimmer pot does.
Really oddly, it has three (3!!!) charging ports. I think you need to charge each one in turn. So three batteries and no charge controller?
Oddly the PSU is 12.5V... so it could really have nothing controlling charge.
I don't really have any targets to hand that I want to risk breaking currently. It may be interesting to see what this does to bootloaders on various devices.
Phishing simulations often seem to mark people down for simply opening an email.
If opening an email is an issue in your systems, then the problem is not your users.
Really interesting teardown of this prison laptop.
The default password for BIOS was found by brute force:
N%(dU32p
I wonder if they are the same for all machines? Looks random enough, but why limit it to 8 characters?
(I suspect the SHA-1 is just due to legacy)
Took a few hours, but I now have the password that the scammers use for their online accounts to transfer money, and the password for their Anydesk remote control infrastructure.
A friend's father had his PC taken over by scammers.... just doing a bit of forensics on it to work out what happened.
First sign is a download of amazon_security.exe which is actually Supremo Remote Desktop.
One of my favourite physical access jobs to a datacenter involved toilets.
Let me explain.
I needed to gain access from the less-secure side of a sub basement floor to the more-secure side.
General office space to data centre.
So with the main transistor out, the little 555 board is simply pulling the output low at around 12kHz. Duty cycle is about 60%.
Trimmer changes this frequency from about 8Hz to 25Hz.
So the top part must just be self-resonant, and this turns it on and off.
@synx508
has found someone who has looked at these before.
Schematics are almost identical. Very surprised these really oscillate so much and don't nuke themselves, given they are shorting the transistor across the rails.
I've tried to quickly reverse it... but what?
Surely I have made a mistake here?
The bigger coil is on the left of the transformer, the thinner many windings on the right.
Does this make any sense to anyone?
What is going on people.
Without further ado, we have another weird piece of Aliexpress gear.
The "2024 New Hades 24V/12V Sonic Scientific Hades DC In 24V, the world's most terrifying energy module"
Is it terrifying? What does it even do?
I broadly agree with this thread, but there's a few aspects where I think the scale and magnitude of the issues on modern ships is maybe not clear.
The number of modern vessels that have all their critical safety systems air gapped is getting lower and lower.
So with the dip switches set to "constant" (i.e. 36V applied to the resonant board, you end up with an approximately 58MHz signal on the base of the transistor.
On the spectrum analyser, with just a short length of wire we are seeing powerful emissions at 50MHz and many harmonics.
Would be interesting to see what this does to electronics.
Probably worth a few corrections:
* Deckies have pointed out that the rudder is much less useful without prop wash, to the point of useless.
* At least one anchor was dropped.
Just as I was coming off the Ride London route at Buckingham palace, an America tourist decided to pipe up.
American tourist: Would I get in trouble if I kick a cyclist off?
Me: No but I'll break your nose you cunt.
American tourist: I was just joking.
Me: I wasn't. Fuck off.
@nedkmenon
Ooof! Not a good time for it. All the ships I sailed on had a DG buffer tank fed from the day tank, so it was very unlikely a fuel issue would cause blackout - one engine would have an issue first.
Recently had to do
@KnowBe4
's "Security Awareness Proficiency Assessment", and I've got to say, I think it's actively harmful to improving security.
Let's look at the questions
Another thread on container ships and how the power and steering systems *should* work when things go wrong.
This diagram is of a fairly typical containership's electrical distribution.
You have four main diesel generators (often called auxilliary engines).
Onto another aspect of the Flipper Zero... and not really knowing what it does.
The Frequency Analyzer seems pretty opaque. When it works, it works, but under what conditions does it work?
What's the German word for when you break the casing of something dismantling it the first time, allowing you to find that one hidden screw that would have let you take it apart without breaking it?
A few people have asked what the setup is for receiving NOAA weather satellite images.
* Any of the cheap rtlsdr will work. I'm using a RTL-SDR v4 (£39.99 on Amazon)
* A V-dipole antenna at 120deg, ~54cm length on each leg (£13.19 on Aliexpress)
It's connected directly to the prop via a massive prop shaft. No gear box.
So, how do you go in reverse?
You stop the engine, and start it in the other direction.
Current speculation is this could be caused by "dirty fuel".
It's not impossible.
Large container ships like this carry two fuels - Heavy Fuel Oil (HFO) and Marine Diesel Oil (MDO).
The ship has a full blackout for over a minute before impacting the bridge, followed by a second shorter loss of power.
Just after the lights come back on, you can see heavy soot which would likely be one of the main diesel generators being brought up.
Took a few hours, but I now have the password that the scammers use for their online accounts to transfer money, and the password for their Anydesk remote control infrastructure.
The engine has two massive turbos. This is the exhaust side of one of them.
You keep the turbine clean by injecting crushed walnut shells onto them whilst the engine is running.
They don't work at lower speeds, so you have two massive fans called auxilliary blowers as well.
On an engine this big, a starter motor won't work - you use air instead and feed it into each cylinder with a distributor.
These are the two start air bottles - which sit at around 30bar. Scary pressures!
The engine needs lots of ancilliary equipment.
Seawater cooling, low temp cooling, high temp cooling, lub oil, fuel, air.
There are pumps and filters everywhere.