pith. sign in

arxiv: 1703.07751 · v1 · pith:JNZI7REMnew · submitted 2017-03-22 · 💻 cs.CR

Oops!...I think I scanned a malware

Ben Nassi , Adi Shamir , Yuval Elovici This is my paper
classification 💻 cs.CR
keywords lightorganizationscannerattackdatadifferentinfiltratelaser
0
0 comments X
read the original abstract

This article presents a proof-of-concept illustrating the feasibility of creating a covert channel between a C\&C server and a malware installed in an organization by exploiting an organization's scanner and using it as a means of interaction. We take advantage of the light sensitivity of a flatbed scanner, using a light source to infiltrate data to an organization. We present an implementation of the method for different purposes (even to trigger a ransomware attack) in various experimental setups using: (1) a laser connected to a stand (2) a laser carried by a drone, and (3) a hijacked smart bulb within the targeted organization from a passing car. In our experiments we were able to infiltrate data using different types of light sources (including infrared light), from a distance of up to 900 meters away from the scanner. We discuss potential counter measures to prevent the attack.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 1 Pith paper

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. ("Oops! Had the silly thing in reverse")---Optical injection attacks in through LED status indicators

    cs.CR 2019-06 unverdicted novelty 7.0

    LED status indicators on microcontrollers can act as optical receivers, enabling data injection attacks with bandwidth approaching 1 Mbit/s under realistic compromise conditions.