Vulnerabilities / Threats

4/13/2018
04:14 PM
50%
50%

Power Line Vulnerability Closes Air Gap

A new demonstration of malware shows that air-gapped computers may still be at risk.

Security professionals love to talk about the "air gap" as the ultimate in safety for a computer: When it's not attached to network cables or a wireless network, it's presumed to be safe. Presumed, that is, until now. This week, researchers from the Ben-Gurion University of the Negev announced that they have come up with a way to exfiltrate data from air-gapped computers via malware that can control the computer's power consumption.

By adding workload to CPU cores that aren't doing anything else, the malware will change how much power (how many watts) the computer is using. Done carefully, the result is, essentially, an FM transmission over the power line. When a probe is placed near the power cable, the modulation can be detected and decoded — and information will have left the system.

The researchers call the malware that controls the power consumption PowerHammer; so far, it's a research proof-of-concept that hasn't been seen in the wild. That's good, because while ways to thwart a PowerHammer-like attack exist, none are perfect.

PowerHammer isn't the first time control or information signals have been sent over power lines. Electric motors are frequently controlled via pulse-width modulation (PWM) sent over the power lines, building control systems have used power-line carriers, and some electrical utilities have experimented with broadband internet access over power lines. This is, however, a reminder that capabilities can be used by individuals and groups with many different agendas.

For more, read here.

Interop ITX 2018

Join Dark Reading LIVE for a two-day Cybersecurity Crash Course at Interop ITX. Learn from the industry’s most knowledgeable IT security experts. Check out the agenda here. Register with Promo Code DR200 and save $200.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
Most Malware Arrives Via Email
Dark Reading Staff 10/11/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-18361
PUBLISHED: 2018-10-15
An issue was discovered in nc-cms through 2017-03-10. index.php?action=edit_html allows XSS via the name parameter, as demonstrated by a value beginning with home_content and containing a crafted SRC attribute of an IMG element.
CVE-2018-1744
PUBLISHED: 2018-10-15
IBM Security Key Lifecycle Manager 2.5, 2.6, 2.7, and 3.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 148423.
CVE-2018-1747
PUBLISHED: 2018-10-15
IBM Security Key Lifecycle Manager 2.5, 2.6, 2.7, and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 148428.
CVE-2018-18324
PUBLISHED: 2018-10-15
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has XSS via the admin/fileManager2.php fm_current_dir parameter, or the admin/index.php module, service_start, service_fullstatus, service_restart, service_stop, or file (within the file_editor) parameter.
CVE-2018-18322
PUBLISHED: 2018-10-15
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has Command Injection via shell metacharacters in the admin/index.php service_start, service_restart, service_fullstatus, or service_stop parameter.