A typical office scanner can be infiltrated and a company’s network compromised using different light sources, according to a new paper by researchers from Ben-Gurion University of the Negev and the Weizmann Institute of Science.
“In this research, we demonstrated how to use a laser or smart bulb to establish a covert channel between an outside attacker and malware installed on a networked computer,” says lead author Ben Nassi, a graduate student in the BGU Department of Software and Information Systems Engineering as well as a researcher at the BGU Cyber Security Research Center (CSRC). “A scanner with the lid left open is sensitive to changes in the surrounding light and might be used as a back door into a company’s network.”
The researchers conducted several demonstrations to transmit a message into computers connected to a flatbed scanner. Using direct laser light sources up to a half-mile (900 meters) away, as well as on a drone outside their office building, the researchers successfully sent a message to trigger malware through the scanner.
In another demonstration, the researchers used a Galaxy 4 Smartphone to hijack a smart lightbulb (using radio signals) in the same room as the scanner. Using a program they wrote, they manipulated the smart bulb to emit pulsating light that delivered the triggering message in only seconds.
To mitigate this vulnerability, the researchers recommend organizations connect a scanner to the network through a proxy server — a computer that acts as an intermediary — which would prevent establishing a covert channel. This might be considered an extreme solution, however, since it also limits printing and faxing remotely on all-in-one devices.
“We believe this study will increase the awareness to this threat and result in secured protocols for scanning that will prevent an attacker from establishing such a covert channel through an external light source, smart bulb, TV, or other IoT (Internet of Things) device,” Nassi says.
[osd_subscribe categories=’cyberattack’ placeholder=’Email Address’ button_text=’Subscribe Now for any new posts on the topic “CYBERATTACK”‘]
The Latest on: Cyberattack
via Google News
The Latest on: Cyberattack
- Police open probe of news agency STT's cyberattackon August 1, 2022 at 9:01 am
Helsinki police have opened an investigation about the cyberattack on Finnish news agency STT last week, the law enforcement agency announced on Monday. The case is being investigated as a data system ...
- Cybersecurity best practices – how should companies respond to a cyberattack?on August 1, 2022 at 5:50 am
This was followed by military and government agencies, which experienced 1,136 weekly incidents for a 47% rise, and communications companies reported 1,079 attacks per organization every week, ...
- A Cyberattack illuminates the shaky state of student privacyon July 31, 2022 at 5:02 pm
The software that many school districts use to track students’ progress can record extremely confidential information on children: “Intellectual disability.” “Emotional Disturbance.” “Homeless.” ...
- Cedar Rapids schools cyberattack questions remain unansweredon July 30, 2022 at 5:00 am
It’s been more than three weeks since the Cedar Rapids Community School District was hit by a cyberattack that allowed ...
- Playing the wrong note? Toronto Symphony Orchestra hit by cyberattackon July 29, 2022 at 11:20 pm
Customers of the Toronto Symphony Orchestra learn that their personal details could be exposed via a ransomware incident.
- U.S. federal court system cyberattack is worse than previously thoughton July 29, 2022 at 9:47 am
A cyberattack incident that involved the U.S. federal court system infrastructure has been proven to be an incredibly significant and sophisticated attack.
- Congress Wants Answers on a ‘Significant’ Cyberattack on Courtson July 28, 2022 at 6:53 pm
Three hostile foreign actors breached the federal courts document management system via “an incredibly significant and sophisticated” cyberattack more than 18 months ago, the chairman of the House ...
- Cybersecurity vendor Entrust tells customers data was stolen during June cyberattackon July 27, 2022 at 2:58 pm
Minneapolis-based cybersecurity giant Entrust has confirmed it was hit by a cyberattack last month. Entrust, which describes itself as a global leader in identities, payments and data protection, told ...
- Entrust loses internal files in cyberattack – unknown if digital ID data includedon July 26, 2022 at 3:06 pm
Entrust says it suffered a cyberattack last month in which some of its internal files were stolen, according to president and chief executive Todd Wilkinson.
via Bing News