36C3: All Wireless Stacks Are Broken

Your cellphone is the least secure computer that you own, and worse than that, it’s got a radio. [Jiska Classen] and her lab have been hacking on cellphones’ wireless systems for a while now, and in this talk gives an overview of the wireless vulnerabilities and attack surfaces that they bring along. While the talk provides some basic background on wireless (in)security, it also presents two new areas of research that she and her colleagues have been working on the last year.

One of the new hacks is based on the fact that a phone that wants to support both Bluetooth and WiFi needs to figure out a way to share the radio, because both protocols use the same 2.4 GHz band. And so it turns out that the Bluetooth hardware has to talk to the WiFi hardware, and it wouldn’t entirely surprise you that when [Jiska] gets into the Bluetooth stack, she’s able to DOS the WiFi. What this does to the operating system depends on the phone, but many of them just fall over and reboot.

Lately [Jiska] has been doing a lot of fuzzing on the cell phone stack enabled by some work by one of her students [Jan Ruge] work on emulation, codenamed “Frankenstein”. The coolest thing here is that the emulation runs in real time, and can be threaded into the operating system, enabling full-stack fuzzing. More complexity means more bugs, so we expect to see a lot more coming out of this line of research in the next year.

[Jiska] gives the presentation in a tinfoil hat, but that’s just a metaphor. In the end, when asked about how to properly secure your phone, she gives out the best advice ever: toss it in the blender.



from Hackaday https://ift.tt/2F6epFV

Comments

Post a Comment

Popular posts from this blog

Fleksy + GIF Keyboard v9.0.0 [Premium] [Latest]

Fleksy is the most fun, customizable way to type, and officially the fastest keyboard in the world. Find and send GIFs & Stickers, and customize your keyboard with powerful extensions & colorful themes.. Use Extensions like: GIFs, Hotkeys, Number Row, Cursor Control, One-Handed Typing, Stickers, Rainbow Key Pops and more. • “This is much better than your standard input methods and predictive text engines.” – TechCrunch • Killer text prediction that works with even the sloppiest of writing – TIME MAGAZINE Really awesome app and best keyboard in whole playstore Please remain like this forever and don’t become like other app which gives so much advertisement and gives so much of trouble so be good like present. It is the The post Fleksy + GIF Keyboard v9.0.0 [Premium] [Latest] appeared first on APK4Free . from APK4Free http://ift.tt/2uy8jbp
Read more

Clipboard Manager : Clipo Pro v8.19-pro [Paid] [Latest]

Clipo creates quick and smart actions for your copied text and shows them as a notification or a intuitive and beautiful list in the app! Features: Cloud Backup and Sync across multiple devices! See all your clips, in a clean and intuitive materially designed list! You can quickly copy an older clip to the Clipboard for using! Search: Get a quick action to search the copied text on the search engine of your choice – Google, Bing, Baidu, AOL, DuckDuckGo! Call: Filters your clips and detects phone numbers to give you a one tap to call experience! Add to Contacts: Filter phone numbers and quickly add to contacts! Open Link: Quickly open a link in your clip! Shorten Link: Quickly The post Clipboard Manager : Clipo Pro v8.19-pro [Paid] [Latest] appeared first on APK4Free . from APK4Free http://ift.tt/2wGr9ht
Read more

VPN 365 – Free Unlimited VPN Proxy & WiFi VPN v1.6.0 [Ad-Free] [Latest]

VPN 365, the best free high-speed WiFi VPN with unlimited proxy connection time. Offers you the freedom to access your favorite content, websites, apps, videos from anywhere and encrypts your internet activities to protect you from hackers. Why use a VPN? To view websites restricted in your region For a more secure internet environment: When connected to a VPN, your IP Address will be hidden when you surf the internet, so no one can track your browsing activities. If you are on a business trip or studying abroad, a VPN is your great tool to use. How to use VPN 365? Tap the Connect button in the app, accept permission request if it shows up, and wait for the connection The post VPN 365 – Free Unlimited VPN Proxy & WiFi VPN v1.6.0 [Ad-Free] [Latest] appeared first on APK4Free . from APK4Free https://ift.tt/2yZWC0o via
Read more