inside the platform who are we classic platforms classic
play

INSIDE THE PLATFORM Who are we Classic platforms Classic platform - PowerPoint PPT Presentation

Apr 28, 2023 •96 likes •453 views

THE HIDDEN DANGERS INSIDE THE PLATFORM Who are we Classic platforms Classic platform Modern platform Modern platform Modern platform Modern platform Attackers motivation Attackers motivation Stealth Persistence Low level

  1. THE HIDDEN DANGERS INSIDE THE PLATFORM

  2. Who are we

  3. Classic platforms

  4. Classic platform

  5. Modern platform

  6. Modern platform

  7. Modern platform

  8. Modern platform

  9. Attackers motivation

  10. Attackers motivation • Stealth • Persistence • Low level security bypass • Data intercepts (USB) • Side channel spying (sensors etc.) • Privilege escalation • VM escape

  11. Attack surface review from the inside

  12. Modern platform

  13. Modern platform • Hide a tiny amounts of data in SPD • OLD attack – change SPD to indicated smaller RAM size and cause memory to wrap around

  14. Modern platform • JEDEC eMMC spec 5.1 • Introduced FFU • FIELD FIRMWARE UPDATE

  15. Modern platform

  16. Modern platform

  17. Modern platform

  18. Modern platform

  19. Modern platform

  20. Modern platform

  21. Modern platform

  22. Modern platform

  23. Modern platform

  24. Modern platform The curious case of “pluggable” - USB 3.0 SATA dock for external HDD - Controller used is made by asmedia - Release a firmware update tool and patch back in 2013 - http://plugable.com/2013/03/05/usb3-sata-u3-firmware-update

  25. Modern platform

  26. Example - Malware gets installed on a platform via phishing etc. - It detects a vulnerable platform component. - Then uses that component for persistence on the device.

  27. DEMO Internet Internal LTE Malware module C&C AV Platform

  29. • Internal Huawei LTE modem • Connected via USB interface in M.2 socket

  30. • Software • Windows utility for firmware updates • Firmware • Strings is useful • Hardware • Test pads?

  32. • CVE-2015-5367: Insecure Linux Image in Firmware • CVE-2015-5368: Insecure Firmware Update Authentication

  33. • All of the affected products: • Huawei • ME906V/J/E • HP • HP EliteBook 725 G2,HP EliteBook 745 G1,HP EliteBook 755 G2,HP EliteBook 820 G1,HP EliteBook 820 G2,HP EliteBook 840 G1,HP EliteBook 840 G2,HP EliteBook 850 G1,HP EliteBook 850 G2,HP EliteBook 1040 G1,HP EliteBook 1040 G2,HP EliteBook Folio 9470m,HP EliteBook Revolve 810 G2,HP EliteBook Revolve 810 G3,HP ElitePad 1000 G2,HP Elite x2 1011 G2,HP ProBook 430 G1,HP ProBook 430 G2,HP ProBook 440 G0,HP ProBook 440 G1,HP ProBook 440 G2,HP ProBook 450 G0,HP ProBook 450 G1,HP ProBook 450 G2,HP ProBook 640 G1,HP ProBook 645 G1,HP ProBook 650 G1,HP ProBook 655 G1,HP Pro x2 612 G1,HP Spectre x2 13-SMB Pro,HP ZBook 14,HP ZBook 14 G2,HP ZBook 15,HP ZBook 15 G2,HP ZBook 15u HP ZBook 17,HP Zbook 17 G2,mt41 Thin Client

  34. Questions?

Recommend

Classic ML Where is ML used? CS 5860 - Introduction to Formal Methods What is Classic ML? ML

Classic ML Where is ML used? CS 5860 - Introduction to Formal Methods What is Classic ML? ML

Classic ML an EventML Where does ML come from? Classic ML Where is ML used? CS 5860 - Introduction to Formal Methods What is Classic ML? ML types Vincent Rahli Nuprl team Polymorphism Recursion Cornell University Typing rules September

125 views • 11 slides
PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Comos premier classic wooden boat

PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Comos premier classic wooden boat

MENAGGIO VARENNA BELLAGIO TREMEZZO PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Comos premier classic wooden boat rental company with driver. Located and operated in Laglio, next to George Clooneys villa and LEZZENO to the

234 views • 8 slides
PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Alle Darsene di Loppia Comos premier

PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Alle Darsene di Loppia Comos premier

MENAGGIO VARENNA BELLAGIO TREMEZZO PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Alle Darsene di Loppia Comos premier classic wooden boat rental company with driver. Located and operated in Laglio, next to George Clooneys

240 views • 8 slides
Classic McEliece: conservative code-based cryptography Round 2 https://classic.mceliece.org/

Classic McEliece: conservative code-based cryptography Round 2 https://classic.mceliece.org/

Classic McEliece: conservative code-based cryptography Round 2 https://classic.mceliece.org/ Daniel J. Bernstein 1 , Tung Chou 2 , Tanja Lange 3 , Ingo von Maurich, Rafael Misoczki 4 , Ruben Niederhagen 5 , Edoardo Persichetti 6 , Christiane

439 views • 28 slides
Classic McEliece: conservative code-based cryptography D. J. Bernstein classic.mceliece.org

Classic McEliece: conservative code-based cryptography D. J. Bernstein classic.mceliece.org

1 Classic McEliece: conservative code-based cryptography D. J. Bernstein classic.mceliece.org Fundamental literature: 1962 Prange (attack) + many more attack papers. 1968 Berlekamp (decoder). 19701971 Goppa (codes). 1978 McEliece

775 views • 58 slides
The difference between hearing and hearing Domino , R2 Domino Classic | Introduction

The difference between hearing and hearing Domino , R2 Domino Classic | Introduction

Domino Classic The difference between hearing and hearing Domino , R2 Domino Classic | Introduction Listening situations EASY 1-on-1 conversation Watching TV Small meeting Family gathering In a store Outdoors Conference In class

599 views • 26 slides
1 FPGAs Attack Model Consider a device capable of implementing the FPGAs allow parallel

1 FPGAs Attack Model Consider a device capable of implementing the FPGAs allow parallel

Introduction Classic cryptography views the secure problems with mathematical abstractions The classic cryptanalysis has had a great

443 views • 11 slides
classic gothic collegiate /institutional style popular in the early 20 th century. It is a

classic gothic collegiate /institutional style popular in the early 20 th century. It is a

The original building is well constructed in the classic gothic collegiate /institutional style popular in the early 20 th century. It is a symmetrical, 2 storey building, complimented with a centred & recessed main entrance. Two classic

528 views • 3 slides
The Classic Vector Space Model Description, Advantages and Limitations of the Classic Vector

The Classic Vector Space Model Description, Advantages and Limitations of the Classic Vector

The Classic Vector Space Model Description, Advantages and Limitations of the Classic Vector Space Model Dr. E. Garcia Global Information Unlike the Term Count Model, Salton's Vector Space Model [1] incorporates local and global information Eq

478 views • 8 slides
BIG CITY SOPHISTICATION & CLASSIC STYLE Merging the 24/7 excitement of Times Square with

BIG CITY SOPHISTICATION & CLASSIC STYLE Merging the 24/7 excitement of Times Square with

BIG CITY SOPHISTICATION & CLASSIC STYLE Merging the 24/7 excitement of Times Square with the age- old glamour of New York, the Manhattan at Times Square offers guests a prime location and classic Art-Deco style. Built in 1962 during New

541 views • 24 slides
More CSS CS 115 Computing for the Socio-Techno Web Instructor: Brian Brubach Announcements

More CSS CS 115 Computing for the Socio-Techno Web Instructor: Brian Brubach Announcements

More CSS CS 115 Computing for the Socio-Techno Web Instructor: Brian Brubach Announcements Check google groups mail Assignment 2 posted, due date pushed to Friday Assignment 0 feedback out Classic webpage Classic webpage Classic

576 views • 22 slides
What does the title mean? 1. part: R on Different Platforms on Different Platforms What is R ?

What does the title mean? 1. part: R on Different Platforms on Different Platforms What is R ?

Introduction Editors and GUIs Packages Platform specifics References 3 What does the title mean? 1. part: R on Different Platforms on Different Platforms What is R ? The useRs Point of View What is a platform ? Platform the

300 views • 10 slides
Robustness Meets Algorithms Ankur Moitra (MIT) Robust Statistics Summer School CLASSIC PARAMETER

Robustness Meets Algorithms Ankur Moitra (MIT) Robust Statistics Summer School CLASSIC PARAMETER

Robustness Meets Algorithms Ankur Moitra (MIT) Robust Statistics Summer School CLASSIC PARAMETER ESTIMATION Given samples from an unknown distribution in some class e.g. a 1-D Gaussian can we accurately estimate its parameters? CLASSIC

1.42k views • 130 slides
Contract Theory: A New Frontier for AGT Part I: Classic Theory Paul Dtting London School of

Contract Theory: A New Frontier for AGT Part I: Classic Theory Paul Dtting London School of

Contract Theory: A New Frontier for AGT Part I: Classic Theory Paul Dtting London School of Economics Inbal Talgam-Cohen Technion ACM EC19 Tutorial June 2019 Plan Part I (Inbal): Classic Theory Model Optimal Contracts

1.07k views • 63 slides
2015 Four Long Courses Friday, May 27 th , 2016 at the Distrikt Swiftsure Lightship Classic Steve

2015 Four Long Courses Friday, May 27 th , 2016 at the Distrikt Swiftsure Lightship Classic Steve

Trophy Presentations for 2015 Four Long Courses Friday, May 27 th , 2016 at the Distrikt Swiftsure Lightship Classic Steve Rander, Rage Corinthian Yacht Club, Portland Line Honours City of Victoria Perpetual Trophy Swiftsure Lightship Classic

496 views • 38 slides
Unit 1: AS Psychology Past to Present Assumptions Relationships One therapy Classic Evidence

Unit 1: AS Psychology Past to Present Assumptions Relationships One therapy Classic Evidence

Unit 1: AS Psychology Past to Present Assumptions Relationships One therapy Classic Evidence Evaluate Evaluate Assumptions Therapies Classic Research 1. Biological 1. Drug therapy or psychosurgery 1. Raine, A et al . (1997) Brain

556 views • 7 slides
Introduction to Sum-of-Squares Ankur Moitra (MIT) Robust Statistics Summer School A CLASSIC HARD

Introduction to Sum-of-Squares Ankur Moitra (MIT) Robust Statistics Summer School A CLASSIC HARD

Introduction to Sum-of-Squares Ankur Moitra (MIT) Robust Statistics Summer School A CLASSIC HARD PROBLEM: MAXCUT Goal: given a graph : find a cut that maximizes the number of crossing edges A CLASSIC HARD PROBLEM:

682 views • 43 slides
As a birthday perfume ... The year 2017 will mark the 20th anniversary of this classic

As a birthday perfume ... The year 2017 will mark the 20th anniversary of this classic

Created in 1997, "Marjolaine '' by Jean Couturier is a fresh and sharpened fragrance for women. A brilliant mix of flowers which invoke the senses. Marjolaine is one of those classic scents you never forget, a brilliant fragrance,

97 views • 6 slides
Thursday July 7 Youth Classic Team arrivals Play Ball Park: Hilton Bayfront, 10:00 a.m. -

Thursday July 7 Youth Classic Team arrivals Play Ball Park: Hilton Bayfront, 10:00 a.m. -

Thursday July 7 Youth Classic Team arrivals Play Ball Park: Hilton Bayfront, 10:00 a.m. - 5:00 p.m. Friday July 8 Youth Classic Games: Ocean Beach Athletic Complex, 8:00 a.m. 9:00 p.m. MLB All-Star FanFest: San Diego

386 views • 14 slides
WCOMO Washington Coalition on Medicaid Outreach DSHS Updates for Community Services Division

WCOMO Washington Coalition on Medicaid Outreach DSHS Updates for Community Services Division

WCOMO Washington Coalition on Medicaid Outreach DSHS Updates for Community Services Division (CSD) June 26, 2020 Classic Medicaid information Oldest Total Cases Document Classic Medicaid: 6/23/20 31 Spenddown Program Classic Medicaid:

370 views • 10 slides
Classic ML CS 5860 - Introduction to Formal Methods Vincent Rahli Nuprl team Cornell University

Classic ML CS 5860 - Introduction to Formal Methods Vincent Rahli Nuprl team Cornell University

Classic ML CS 5860 - Introduction to Formal Methods Vincent Rahli Nuprl team Cornell University September 6, 2011 Nuprl team Classic ML September 6, 2011 1/42 Classic ML an EventML Where does ML come from? Where is ML used? What is

774 views • 42 slides
Mifare Classic analysis in Czech Republic / Slovakia Ing. Pavol Luptk, CISSP, CEH Lead

Mifare Classic analysis in Czech Republic / Slovakia Ing. Pavol Luptk, CISSP, CEH Lead

Mifare Classic analysis in Czech Republic / Slovakia Ing. Pavol Luptk, CISSP, CEH Lead Security Consultant www.nethemba.com www.nethemba.com Legal disclaimer Nethemba s.r.o. is not responsible for a public misuse of Mifare Classic

502 views • 30 slides
WIDE-FIELD IMAGING IN CLASSIC AIPS Eric W. Greisen National Radio Astronomy Observatory

WIDE-FIELD IMAGING IN CLASSIC AIPS Eric W. Greisen National Radio Astronomy Observatory

WIDE-FIELD IMAGING IN CLASSIC AIPS Eric W. Greisen National Radio Astronomy Observatory Socorro, NM, USA The problem Non-coplanar array has w term in the equation for phase URSI August 2002 Wide-field imaging in Classic AIPS Magnitude of

358 views • 16 slides
Thanksgiving Classic 2018 Southern National Motorsports Parks Premier Racing Event

Thanksgiving Classic 2018 Southern National Motorsports Parks Premier Racing Event

Thanksgiving Classic 2018 Southern National Motorsports Parks Premier Racing Event www.snmpark.com | info@snmpark.com | 919-284-1114 The POWER & EXCITEMENT Is Back At SOUTHERN NATIONAL For 3 Full Days! What is the Thanksgiving Classic?

584 views • 22 slides

More recommend