The Ignorance towards Embedded Systems - - PowerPoint PPT Presentation

• The Ignorance towards

Embedded Systems

Felix ‘FX’ Lindner, Fabian ‘fabs’ Yamaguchi, Recurity Labs GmbH 22nd FIRST Conference, Miami

• Your Other Network

• !
• "

#$%& '"(

• )
• !!
• A Matter of Perspective

• *

%'(

+!!,- !

+,- !

.*/ .*/ / !* !

A Matter of Perspective

• A Matter of Perspective
• )
• "$0"
• #+
• 1
• #"
• 23
• 43%
• %

• %

$* $ +

5!

!* !/ !6

#1

• $+ !

#+!#1! !

Known Attacks in Enterprise Networks

• %!

! 1!!

%*!0 1

4!'66"++ ( '66%7/!( !/8 /!'66)(

Known Attacks in Enterprise Networks

!" #$ 96 +

• 1
• "*9::!
• %

5*,- !

;6 .

• !

Known Attacks in Enterprise Networks

• )!5!

)1

!5!!

• !

58

+!*55

,- +5

Known Attacks in Enterprise Networks

%&&"

• "$0"

"$!,- !!

2

",- !!!*!

• %"$0"!

%! "$0"!

• !5;::<

=%2'%2(!

• "*
• Known Attacks in Enterprise Networks

' ()

• #!

!

#! +!5!

• " "%55

#!" #8*!5 !

• 2/*#
• Known Attacks in Enterprise Networks

' ()

• #!

!

#! +!5!

• " "%55

#!" #8*!5 !

• 2/*#
• Known Attacks in Enterprise Networks
• !"""""#$#"%

%&$'$$&'$ &$'$$&'$ &$'$$&'$ &$'$$&'$%

* )1#>7:?! !!!@)

• @)

!!

!@) !

• )88!A9::15

Known Attacks in Enterprise Networks

>B96;-* 4 ;6:*.*;::C

* )1#>7:?! !!!@)

• @)

!!

!@) !

• )88!A9::15

Known Attacks in Enterprise Networks

>B96;-* 4 ;6:*.*;::C

'(&

• #"
• %#"#1
• #"!!!

5

66!!+4+' (

• !
• #"D'66E(3%1
• *#"
• $>

Known Attacks in Enterprise Networks

>=0066000F:F0EE;::C:799E6

(+#+,$

• 23!

123'66(C:/ *!

• %23!

!!5 !*!! !'66 (!

• 23#"

!23!!

• !23!!
• !E
• #!!23!!

Known Attacks in Enterprise Networks

" !5'( !

8!"+

+

1 *

• !*
• 8"+

Known Attacks in Enterprise Networks

• +!

+

• *E*;::;

)! !

• ";::G*2H 5!
• 35. I

! $ Known Attacks in Enterprise Networks

• Known Attacks in Enterprise Networks

• Known Attacks in Enterprise Networks

• Known Attacks in Enterprise Networks

( ( )&$'$$&$*%$+ ,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, !- . / 0 0 !/0 1221"12#1"12*# !&''&$34$$$ !!"""%" ! !!""" !&$$4%'$%$1 !56"( "% ,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, .'!- 7 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% 6/ 0 1221"12#1"12#*( 899: ! 9;( ; ; ( 9 (;< = 9>?@9 -

• .

$!! 15

+,- 15

! !E

"

+E 15'(

Known Attacks in Enterprise Networks

/,0(

• 43!!
• 43

"/5 43

• 43!*

!

!5 !43!

• +

Known Attacks in Enterprise Networks

/,0(

• 43!!
• 43

"/5 43

• 43!*

!

!5 !43!

• +

Known Attacks in Enterprise Networks

<( % (%&$'$%$$' A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%A B B B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B( B3*C . B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B BD B5 (B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B( BC B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B( B B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B E BDB B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B BC FB'&"$3"$4B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B BC - B B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B FB$&"$3"'$B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B BG? FB6 &&$'$B B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B

• B5. ) 5F +B

B%%%%%%%%%%%%%%%%%%%%%%A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%B B.DB.%&$'$%$HH'B A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%A A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%A B5 B 3* ( B BB 675 B BB (5 B BB B BB 675 (5B BB B A%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%A

0" & 8

+* +!!

• +J!!!

)"%22D2 %!.%.

• J

Known Attacks in Enterprise Networks

+ "!(1 +)"% +/ 2

!

%!2

")"% )!,- 5

Known Attacks in Enterprise Networks

!2 / "!

$!#

!5*

,!- !>

!!! !;;<! )!!/ ++5 )!!/ ! Known Attacks in Enterprise Networks

>=00660;:9:0:90;C0E!E!0

!2 / "!

$!#

!5*

,!- !>

!!! !;;<! )!!/ ++5 )!!/ ! Known Attacks in Enterprise Networks

>=00660;:9:0:90;C0E!E!0

)3

. . = !@) !

@ @$! How These Attacks Are Used

4+5 = + )) "

!!!!!'(

@5

4

How These Attacks Are Used

*. = #" $+0#+) "!

KEEK !!>

How These Attacks Are Used

>=00!!6!60

43 !

$'66 $( !*! *E#1!

!

66#))%$L!)

%D $#"

Network Level Protections

• 4

EE !!

• "

$!

Network Level Protections

(%* .

• %1

1

.

%8

)1 .

Network Level Protections

)6 # =

$M "!M !!5!M !!!M "!M

!1

.*8! .!*8!

Policy Level Protections

+ !M !!N

! +! !!!D!

#

K! !

Policy Level Protections

(7&). 8

$ D"+ !!! E"+"+ %

"!E"+*

E"+

Policy Level Protections

)" %

!

!!!!

"! 8

!!!

) 4!!!!!

!5

+!

Patching Embedded Systems

83 !!

,!1!-

)!!

• !

!

!!

!

+/! "/*/!!!

Patching Embedded Systems

• +
• +

" "

• 5

)8!8 )8!!

• )D

+ Your Other Network

)9 Questions? Felix ‘FX’ Lindner, Fabian ‘fabs’ Yamaguchi, Recurity Labs GmbH