LED status indicators on microcontrollers can act as optical receivers, enabling data injection attacks with bandwidth approaching 1 Mbit/s under realistic compromise conditions.
Oops!...I think I scanned a malware
1 Pith paper cite this work. Polarity classification is still indexing.
1
Pith paper citing it
abstract
This article presents a proof-of-concept illustrating the feasibility of creating a covert channel between a C\&C server and a malware installed in an organization by exploiting an organization's scanner and using it as a means of interaction. We take advantage of the light sensitivity of a flatbed scanner, using a light source to infiltrate data to an organization. We present an implementation of the method for different purposes (even to trigger a ransomware attack) in various experimental setups using: (1) a laser connected to a stand (2) a laser carried by a drone, and (3) a hijacked smart bulb within the targeted organization from a passing car. In our experiments we were able to infiltrate data using different types of light sources (including infrared light), from a distance of up to 900 meters away from the scanner. We discuss potential counter measures to prevent the attack.
fields
cs.CR 1years
2019 1verdicts
UNVERDICTED 1representative citing papers
citing papers explorer
-
("Oops! Had the silly thing in reverse")---Optical injection attacks in through LED status indicators
LED status indicators on microcontrollers can act as optical receivers, enabling data injection attacks with bandwidth approaching 1 Mbit/s under realistic compromise conditions.