Security Researchers Mordechai Guri and Professor Yuval Elovici at the Ben Gurion University in Israel found a new way to breach data even with no network connection.
A proof of concept malware developed by researchers show that attacker can transmit sensitive information from isolated computers to nearby mobile phone using radio signals.Security researchers presented this malware on the 9th IEEE International Conference on Malicious and Unwanted Software (MALCON 2014) held at Denver.This new type of malware is called AirHopper.
In highly secure facilities the assumption today is that data cannot leak outside of an isolated internal network,it is called air-gap security.
"This is the first time that a mobile phone is considered in an attack model as the intended receiver of maliciously crafted radio signals emitted from the screen of the isolated computer."according to Ben Gurion University.
Test conducted with AirHopper have shown that data can be transmitted from the physically isolated device upto the distance of 7 meters with FM bandwith of 13-60 bps (Bytes per second).
"Such technique can be used potentially by people or organisations with malicious intentions and we want to start a discussion on how to mitigate this newly presented risk.", said Dudu Mimran chief technology officer of cyber security labs at Ben Gurion University.
Security Researchers also uploaded proof-of-concept video.
Post a Comment