if you think, your office is secured because it âs on the top floor of a skyscraper building, then you may require to rethink as in this day & age, much nothing is unhackable not even office printers locked at the top floor.
The researchers used 2 applications that they developed:
The researchers used a standard drone from a Chinese firm, DJI & used it to move a Samsung Smartphone to an area where a wireless network with wireless printer was located.
▬The 1st app establishes a imitative access purpose once the open wireless printer is detected. The access purpose mimics the printer and tricks computers within the internal wireless network to send sensitive documents thereto.
▬The second app is Cyber security Patrol, that is meant to scan the air sorting out open Wi-Fi printers and mechanically apprize the organization’s IT department. This app has been designed to boost the safety of the target organization. it's for unsecured printers within the target organization accessible via the drone, however rather launching the attack, it took photos of the compromised printers and reports it to the inner workers.
Once a document is intercepted, the app will send it to associate attacker’s Dropbox account exploitation the phone’s 3G or 4G association, and additionally send it on to the important printer thus a victim wouldn’t notice the hack.
A drone hovering outside Associate in Nursing office block would be clearly noticed, however the goal of the project supposed to assist firms so they might be educated however simply accessible Wi-fi printers will be which might be taken by hackers to steal knowledge or get into their networks.
The project was a part of a government-sponsored cyber security defense project.
Student researchers Jinghui Toh and Hatib Muhammad developed the tactic below the steerage of prof Yuval Elovici of Department of data Systems Engineering at Ben-Gurion University of the desert.
The system targets wireless printers as a result of wireless printers square measure equipped the Wi-Fi association open by default, and plenty of firms forget to shut this hole after they add the device to their Wi-Fi networks. This open association probably provides Associate in Nursing access purpose for outsiders to attach to a network and steal a company’s sensitive knowledge.
The researchers additionally incontestible that the attack may even be applied by concealing a wireless telephone within Associate in Nursing autonomous vaccum cleaner, once that the device can unceasingly scan for organisation’s networks for printers with unsecured connections.
The project conducted by the researchers incontestible yet again the shut link between physical and logical security.
Any person will merely install the Cybersecurity Patrol app on a smartphone and fasten it to a drone to and send it upwards. although identical methodology will be utilized by organizations to ascertain for unsecured printers and alternative wireless devices.
It’s true that each invention and development comes with each professionals and cons however if the cons have larger risk, then it’s time to approach physical security during a completely different means.