BU
С Новым годом, с новыми будущими утечками и информационными опасностями!
Size: a a a
2020 January 01
NA
Выжили? Если вы читаете это сообщение - вы и есть сопротивление!😎
T
Выжили? Если вы читаете это сообщение - вы и есть сопротивление!😎
Ахах, это точно)
т
я кодил в нг ее
A
я кодил в нг ее
Теперь весь год так (как Сизиф) проведешь.
т
Теперь весь год так (как Сизиф) проведешь.
так и хочу
DG
Сегодня ночью ))
С радостью, но я только ночью прилечу
CA
BU
Я думал, ты грушу раскиянишь под конец))
L
чото мало жижи выпили
CA
Я думал, ты грушу раскиянишь под конец))
это не я
CA
Я думал, ты грушу раскиянишь под конец))
И это не груша.
CA
CA
Ложки нет.
BU
точно, не обратил внимания, что это не Зелёный переслал
CA
Это я помело привезла
CA
И бутылку бухла.
ЗБ
All wireless communication stacks are equally broken
Wireless connectivity is an integral part of almost any modern device. These technologies include LTE, Wi-Fi, Bluetooth, and NFC. Attackers in wireless range can send arbitrary signals, which are then processed by the chips and operating systems of these devices. Wireless specifications and standards for those technologies are thousands of pages long, and thus pose a large attack surface.
Wireless exploitation is enabled by the technologies any smartphone user uses everyday. Without wireless connectivity our devices are bricked. While we can be more careful to which devices and networks we establish connections to protect ourselves, we cannot disable all wireless chips all the time. Thus, security issues in wireless implementations affect all of us.
Wireless chips run a firmware that decodes wireless signals and interprets frames. Any parsing error can lead to code execution within the chip. This is already sufficient to read data passing the chip in plaintext, even if it would be encrypted while transmitted over the air. We will provide a preview into a new tool that enables full-stack Bluetooth fuzzing by real-time firmware emulation, which helps to efficiently identify parsing errors in wireless firmware.
Since this kind of bug is within the wireless chips' proprietary firmware, patching requires assistance of the manufacturer. Often, fixing this type of security issue takes multiple months, if done at all. We will tell about our own responsible disclosure experiences, which are both sad and funny.
Another risk are drivers in the operating system, which perform a lot of operations on the data they receive from the wireless chip. Most drivers trust the input they get from a wireless chip too much, meaning that wireless exploitation within the chip can easily escalate into the driver.
While escalating directly into the operating system is the commonly known option, it is also possible to escalate into other chips. This is a new attack type, which cannot be filtered by the operating system.
For everyone who is also concerned during our talk, there will be fancy tin foil hats.
https://media.ccc.de/v/36c3-10531-all_wireless_communication_stacks_are_equally_broken
Wireless connectivity is an integral part of almost any modern device. These technologies include LTE, Wi-Fi, Bluetooth, and NFC. Attackers in wireless range can send arbitrary signals, which are then processed by the chips and operating systems of these devices. Wireless specifications and standards for those technologies are thousands of pages long, and thus pose a large attack surface.
Wireless exploitation is enabled by the technologies any smartphone user uses everyday. Without wireless connectivity our devices are bricked. While we can be more careful to which devices and networks we establish connections to protect ourselves, we cannot disable all wireless chips all the time. Thus, security issues in wireless implementations affect all of us.
Wireless chips run a firmware that decodes wireless signals and interprets frames. Any parsing error can lead to code execution within the chip. This is already sufficient to read data passing the chip in plaintext, even if it would be encrypted while transmitted over the air. We will provide a preview into a new tool that enables full-stack Bluetooth fuzzing by real-time firmware emulation, which helps to efficiently identify parsing errors in wireless firmware.
Since this kind of bug is within the wireless chips' proprietary firmware, patching requires assistance of the manufacturer. Often, fixing this type of security issue takes multiple months, if done at all. We will tell about our own responsible disclosure experiences, which are both sad and funny.
Another risk are drivers in the operating system, which perform a lot of operations on the data they receive from the wireless chip. Most drivers trust the input they get from a wireless chip too much, meaning that wireless exploitation within the chip can easily escalate into the driver.
While escalating directly into the operating system is the commonly known option, it is also possible to escalate into other chips. This is a new attack type, which cannot be filtered by the operating system.
For everyone who is also concerned during our talk, there will be fancy tin foil hats.
https://media.ccc.de/v/36c3-10531-all_wireless_communication_stacks_are_equally_broken
BG
чото мало жижи выпили
Чот да, медленно уходит. Все опасаются)))
FB
Всем привет, с новым 2020 годом!
Ознакомился я с тематикой чата, нашел вас в поиске.
Все же спрошу - можете ли вы помочь в выборе ОЗУ по рузен 2*?
Ознакомился я с тематикой чата, нашел вас в поиске.
Все же спрошу - можете ли вы помочь в выборе ОЗУ по рузен 2*?