当前位置:首页 > 报告详情

注意你的手机:针对移动设备的新型基于 USB 的文件访问攻击.pdf

上传人: 竿*** 编号:981841 2025-11-29 36页 5.43MB

1、#BHAS BlackHatEventsWATCH YOUR PHONENovel USBNovel USB-Based File Access Attacks Against Mobile DevicesBased File Access Attacks Against Mobile DevicesFlorian Draschbacher&Lukas Maar#BHAS BlackHatEventsAbout UsWe are PhD students at Graz University of Technologys Institute of Information SecurityRes

2、earch Areas:Research Areas:Mobile Security Application Analysis Hardware AspectsResearch Areas:Research Areas:System Security Kernel Security Side-Channel SecurityFlorian Florian DraschbacherDraschbacherflorian.draschbachertugraz.atLukas MaarLukas Maarlukas.maartugraz.at#BHAS BlackHatEventsIntroduct

3、ion Mobile devices store sensitive user dataPictures,Messages,Credentials,USB connectivity is a known attack vectorExtract data,compromise device We present novel USB data extraction attacks for two scenarios:Manipulated Chargers:Attacker needs to bypass user promptsPhysical Access:Attacker needs to

4、 bypass lock screen#BHAS BlackHatEventsHistory of USB AttacksManipulated USB DevicesExploit high-level trust modelMalicious HostsJuiceJacking(2011)Mitigated with user promptsMalicious PeripheralsBadUSB(2014-)JuiceFilming(2016-)Ghosttalk(2022-)Physical AccessExploit individual low-level flawsExample:

5、Checkm8(2019)Code execution throughUse-After-Free in USB stackCommercial forensics toolsCellebrite UFED(2008-)MSAB XRY(2009-)Magnet GrayKey(2017-)#BHAS BlackHatEventsBackground:USB on Mobile Mobile devices use multi-function USB-C ports PowerCharge phone or supply peripherals USBData exchange with P

6、C or peripherals USB Power DeliveryNegotiation of power and data rolesStill:A USB port either acts as USB host or USB device at a given timeImage:Kyu3/CC BY-SA 4.0/wikimedia#BHAS BlackHatEventsBackground:USB File Access on MobileUser prompts mitigate malicious chargers that extract files(“JuiceJacki

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要探讨了新型USB数据提取攻击对移动设备的威胁。以下是关键点: 1. **攻击类型**:包括操纵充电器和物理访问两种场景。 2. **历史攻击**:回顾了从JuiceJacking到BadUSB等历史攻击,以及物理访问攻击如Checkm8。 3. **USB在移动设备上的使用**:讨论了移动设备使用多功能的USB-C端口进行充电和数据交换。 4. **操纵充电器攻击**:通过恶意充电器绕过用户提示,实现数据提取。 5. **物理访问攻击**:绕过锁屏和用户同意提示,直接访问设备数据。 6. **攻击示例**:展示了如何从锁定设备中提取文件和删除所有文件。 7. **缓解措施**:建议安装更新、使用自己的充电器,并在不信任的环境下关闭设备。 8. **核心数据**:例如,Android设备上的CVE-2025-24193和CVE-2024-54096等漏洞。
"手机充电,数据安全吗?" "小心!充电宝成黑客工具?" "你的手机,安全吗?"
客服
商务合作
小程序
服务号
折叠