SANS Community Nights are a great way to stay in touch with your local cybersecurity community and to hear the latest in technical wizardry, industry intelligence, and thought leadership from our amazing instructors.
Join us at:
Crowne Plaza Paris - Republique, an IHG Hotel
10 Pl. de la République
Paris, 75011, France
View the agenda below:
Tuesday 17th September 2024
17:30 – 18:00
Registration and Drinks
18:00 – 19:00
Unlocking Secrets: Pulseview & Side-Channel Timing Attacks on Keypad Safes
with Monta Elkins
19:00 – 20:00
Dealing with our APTs - The Assiduous Payroll Targeters
with David Mashburn
Abstracts:
Unlocking Secrets: Pulseview & Side-Channel Timing Attacks on Keypad Safes
Overview
In this demo of hardware hacking, we'll introduce PulseView - the 'Wireshark of hardware hacking' - and demonstrate a technique to unlock a keypad safe. Our method? A Side-Channel Timing Attack, which relies on the timing discrepancies in the user interface.
Using an affordable logic analyzer (priced under $20), we'll capture microsecond changes in response times tied to incorrect passcodes. By leveraging this side-channel data, we will carefully decipher the true passcode of the safe.
Unique Approach
Traditional hacking often focuses on software vulnerabilities to exfiltrate sensitive data. In this demonstration, we will show how the timing of system responses can leak data without any traditional vulnerabilities. This approach emphasizes the power and subtlety of side-channel attacks in extracting valuable information.
Insights for Attendees
- Understand how a side-channel timing attack works to reveal sensitive data.
- Learn about the key functionality of logic analyzers and the PulseView software, often called the 'Wireshark of hardware hacking.'
- Gain practical knowledge on how to utilize changes in response time to recover the passcode of a keypad safe.
- Join us for this insightful session to explore the intricacies of hardware hacking and enhance your cybersecurity skill set with real-world applications and techniques.
Dealing with our APTs - The Assiduous Payroll Targeters
Adversaries continue to look for opportunities to gain financial benefit from their malicious activities. While ransomware is often top of mind for organizations, the use of self-service options in various systems offers another attractive target for attackers. These systems or processes can be abused by attackers to gain unauthorized access and to divert funds from accounts payable or even payroll. This talk will review actual incidents and walk through the attacks, response, and lessons learned.