A typical office scanner can be infiltrated and a company’s network compromised using different light sources, according to a new paper by researchers from Ben-Gurion University of the Negev and the Weizmann Institute of Science.
“In this research, we demonstrated how to use a laser or smart bulb to establish a covert channel between an outside attacker and malware installed on a networked computer,” says lead author Ben Nassi, a graduate student in the BGU Department of Software and Information Systems Engineering as well as a researcher at the BGU Cyber Security Research Center (CSRC). “A scanner with the lid left open is sensitive to changes in the surrounding light and might be used as a back door into a company’s network.”
The researchers conducted several demonstrations to transmit a message into computers connected to a flatbed scanner. Using direct laser light sources up to a half-mile (900 meters) away, as well as on a drone outside their office building, the researchers successfully sent a message to trigger malware through the scanner.
In another demonstration, the researchers used a Galaxy 4 Smartphone to hijack a smart lightbulb (using radio signals) in the same room as the scanner. Using a program they wrote, they manipulated the smart bulb to emit pulsating light that delivered the triggering message in only seconds.
To mitigate this vulnerability, the researchers recommend organizations connect a scanner to the network through a proxy server — a computer that acts as an intermediary — which would prevent establishing a covert channel. This might be considered an extreme solution, however, since it also limits printing and faxing remotely on all-in-one devices.
“We believe this study will increase the awareness to this threat and result in secured protocols for scanning that will prevent an attacker from establishing such a covert channel through an external light source, smart bulb, TV, or other IoT (Internet of Things) device,” Nassi says.
The Latest on: Cyberattack
via Google News
The Latest on: Cyberattack
- Private information spotted on dark web in fallout of Fairfax Co. schools cyberattackon October 9, 2020 at 9:35 pm
Personal information stolen from Fairfax County Public Schools during a ransomware attack last month has appeared on the dark web, according to a news release from Virginia’s largest school system.
- Cyberattack on Georgia agency exposed private information of parents, childrenon October 9, 2020 at 8:10 pm
Hackers breached state email accounts in the Georgia DHS exposing personal information of adults and children who have cases with Child Protective Services and the DFCS.
- Tyngsborough schools investigate cyberattackon October 9, 2020 at 4:46 pm
The school department’s info tech team has determined the outage was not caused internally or through the district’s Internet provider, Superintendent Michael Flanagan said in a statement.
- Online learning halted at Tyngsboro schools due to possible cyberattackon October 9, 2020 at 3:27 pm
Police said the disruptions may have originated from devices brought into the school buildings, noting that that they were so-called “denial-of-service” attacks.
- Georgia announces cyberattack impacting DFCS informationon October 9, 2020 at 2:55 pm
The Georgia Department of Human Services said the attacks occurred between May 3 and May 15. ATLANTA — The state is warning the public that some personal information was compromised during a May ...
- School's internet outage caused by cyberattack, Tyngsborough superintendent sayson October 9, 2020 at 11:43 am
A local school's Internet outage is the result of a cyberattack, according to Tyngsborough school officials. The outages have affected Tyngsborough High School and Tyngsborough Middle School.The ...
- US Senator: 'Grave Concerns' Over Cyberattack On Montco Companyon October 9, 2020 at 11:40 am
The attack on the Montgomery County-based healthcare firm, one of the nation's largest, "sharply highlights" the need for better security.
- Florida’s elections website failed because of servers, not cyberattack, says IT officialon October 8, 2020 at 4:56 am
Former state Rep. James Grant, now Florida’s chief information officer, said misconfigured computer servers were to blame for Monday’s crash.
- No cyberattack detected in crash of Florida voter registration website after ‘unprecedented' surge in deadline traffic, elections officials sayon October 7, 2020 at 8:29 pm
Florida elections officials said there was 'no evidence' that a malicious attack was behind the crash of the voter registration website on the final day to sign up, a crash that forced the state to ...
via Bing News