A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Remote attacks against IoT - Alex Balan BSides Philadelphia 2016 (Hacking Illustrated Series InfoSec Tutorial Videos)

Remote attacks against IoT
Alex Balan
@Jaymzu
BSides Philadelphia 2016

IoT is currently broken when we talk about security. We've seen this over and over at almost every security conference. The lack of standards, poor understanding of basic security practices tied into the explosion of smart devices are just a few of the key variables that factor into a scary picture of the future. However, so far, most demos relied on proximity to the targeted device. In this talk, we'll show our findings on a popular smart device from a known vendor, methods used during our research and, of course, demonstrate how, by leveraging the vendor cloud, the device can be both controlled by a remote attacker as well as hacked all the way to a root shell. All remotely and with the device "safely" behind NAT and with a private IP address.

Alex is the Chief Security Researcher and Spokesperson for Bitdefender. His career is focused on Information Security, Innovation and Product Strategy, fields in which he has so far accumulated over 15 years of experience. He drove the vision for Bitdefender’s UNIX-based security solutions before kickstarting an ambitious project that would advance the company’s R&D department and steer a good part of the company’s focus towards technology and innovation. His role contributed significantly to the company’s current position as technology leader. He is now furthering security research in the IoT field and preaches IoT security awareness.

Recorded at BSides Philly 2016

Back to BSides Philly video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2016, IronGeek
Louisville / Kentuckiana Information Security Enthusiast