|
|
黑帽 2017年7月26-27日在拉斯維加斯 話: WiFi 跳蟲的攻擊目標是手機
Black Hat 2017: A Wi-Fi Hopping Worm Targeting Smartphones by ALYSSA NEWCOMB
[轉載, 英文, 又系要等待板主大人翻譯吧!]
http://www.nbcnews.com/tech/secu ... smartphones-n787301
LAS VEGAS - If you haven't updated your smartphone with the latest operating system or security fix, you're probably going to want to do it now.
Broadpwn, a vulnerability in a Wi-Fi chip found in more than a billion phones, could allow a hacker within Wi-Fi range to take over your smartphone, according to research presented on Thursday at the Black Hat security conference in Las Vegas.
Not only that, but the hacker could then use your infected smartphone as an access point to attack other phones in the area, acting as a Wi-Fi worm. The scariest part: You don't have to do anything to get infected and the hacker can take over your system without it crashing - or you noticing.
Almost the entire range of flagship Samsung phones, various iPhones, and devices made by HTC, LG, and Nexus have the Broadcom BCM43xx family of Wi-Fi chips, which were found to have a vulnerability.
Smartphone hacking is heavily focused on operating systems, but researcher Nitay Artenstein, who spent a year reverse engineering the Wi-Fi chips and pouring through code, said in his research that this shows how important it is to test peripheral components.
"Old school hackers often miss the 'good old days' of the early 2000s, when remotely exploitable bugs were abundant, no mitigations were in place to stop them, and worms and malware ran rampant," he wrote in a blog post. "But with new research opening previously unknown attack surface such as the BCM WiFi chip, those times may just be making a comeback."
But of course, there's good news. The vulnerabilities have been patched. If you're an iPhone user and haven't updated your operating system to iOS 10.3.3 or an Android user who hasn't completed the July security update, you'll want to that right away.
黑帽 2017年7月22-27日在拉斯維加斯, Mandalay Bay,
https://www.blackhat.com/us-17/
登入後,內容更豐富
您需要 登錄 才可以下載或查看,沒有賬號?註冊
×
|
|
在線雷達
發表於 2017-7-30 00:46:29
廣播
置頂
推舊帖
收嗲鳥
油顏色
發表於 2017-7-30 07:09:59
呀杈同668