OEMs Beware: These Days, Anything Can Be Hacked






Home Blogs Message Boards Research Key Sections \| Sign Up / Sign In {* #signInForm } { signInEmailAddress } { currentPassword } Forgot your password? Create Account { /signInForm } Sign In Welcome back, { welcomeName }! { loginWidget } Use another account Sign In Welcome Back { #signInForm } { signInEmailAddress } { currentPassword } { /signInForm } Use another account Registration Please confirm the information below before signing in. Already have an account? Sign In. { #registrationForm } { emailAddress } { newPassword } { newPasswordConfirm } { displayName } { firstName } { lastName } { addressCountry } { companyName } { EBNJobfunction } { jobFunctionOther } { EBNIndustry } { industryOther } { optInRegistration } { optAgree } { optShare } { siteName } { backButton } { /registrationForm } Thank You for Registering Please wait you will be redirected shortly. Create New Password We'll send you a link to create a new password. { #forgotPasswordForm } { signInEmailAddress } { backButton } { /forgotPasswordForm } Create New Password We've sent an email with instructions to create a new password. Your existing password has not been changed. Close Resend Verification Email Sorry, we could not verify that email address. Enter your email below, and we'll send you another email. { #resendVerificationForm } { signInEmailAddress } { /resendVerificationForm } Verification Email Sent Check your email for a link to verify your email address. Sign in Email Verified Thank you for verifiying your email address. Sign in Change Password { #changePasswordFormNoAuth } { newPassword } { newPasswordConfirm } { /changePasswordFormNoAuth } Password Changed Your password has been successfully updated. Sign in Create New Password We didn't recognize that password reset code. Enter your email below, and we'll send you another email. { #resetPasswordForm } { signInEmailAddress } { /resetPasswordForm *} Create New Password We've sent you an email with instructions to create a new password. Your existing password has not been changed. Close Join Login About

Sitting at the Crossroads of Cybersecurity & Privacy - The combination of the headline ... Global Uncertainty Puts Resiliency in Focus - The 2019 FM Global Resilience Index ranks ... Huawei Block May Make U.S. Stumble - Huawei will be crippled by Trump, but in the long ... Capturing the Supply Chain Holy Grail: Community Intelligence - The past few years have ... Robotics Drives Supply Chain Profits - Here’s why integrating automation into warehouses ... Discovering the New World of Cross-Border E-Commerce - Cross-border sales may seem like an ...
	ERIK KANGAS OEMs Beware: These Days, Anything Can Be Hacked Bio Email This Print Comment Erik Kangas, Founder, LuxSci 10/27/2016 (4) comments NO RATINGS Login to Rate Tweet Imagine you're groggily driving to work one Monday morning when you're abruptly pulled out of your sleepy state by an unexpected spray of washer fluid across your windshield. You quickly turn on your wipers to rescue you from blindness when your music suddenly starts playing at a deafening volume. You can't get either distraction to stop, so you start to panic — what else could go wrong, and why is it happening? The above scenario is child's play compared to what a hacker sitting at home with a laptop can do. Imagine if they'd decided to lock up your steering wheel or disable your brakes? The fear is all too real. For many of us, getting hacked is our worst nightmare. We live in fear that someone will get ahold of our credit card information, Social Security number, or proprietary work documents. Unfortunately, the dangers are no longer limited to cyberspace. Hopefully, today's electronics OEMs are equally concerned about addressing these potential threats. Today's hackers can gain control of and manipulate your real-world environment, too. Let's take a look at how this is accomplished using some real-life examples and how electronics manufacturers should be getting involved. Exploiting hardware flaws If you're starting to feel a bit paranoid about the idea of strangers having the ability to access your physical space, then this example will put you at ease — in the sense that there's validation for your concern. Rowhammer, a new technique created as an example by Google researchers, is the main culprit. Rowhammer actually taps into the physical properties of computers, targeting dynamic random-access memory (DRAM) until it glitches and grants access to the computer's operating system. Rowhammer is a particularly interesting technique, as it goes "around" the operating system and firmware to change the system in ways that are invisible — all the better to avoid triggering any security alarms. Some new versions of RAM protect against this in various ways, such as faster refreshing of data, but there's a lot of old memory out there with a lot of valuable information stored on it. But Rowhammer is just one approach. Flip Feng Shui, for example, builds off of Rowhammer to "flip a bit in a memory page" to get at a vulnerable memory location. There are also the side-channel attacks, which allow exfiltration of data on air-gapped machines (machines not connected to the network). This is accomplished using software that sends the data via other means, such as the sound made by your computer or hard drive, the electromagnetic emissions from the screen, and so on. It may sound like a side plot from Mr. Robot, but operating system smarts can't block attacks aimed at hardware flaws like as these. Page 1 of 3 Next > Email This Print Comment COMMENTS View comments: newest first \| oldest first \| threaded [close this box] User Rank Stock Keeper wharton mba mobbydi 11/16/2016 9:53:22 AM NO RATINGS Login to Rate absolutely right article Reply Post Message Messages List Start a Board User Rank Stock Keeper prayer times Lily652 11/7/2016 1:20:55 PM NO RATINGS Login to Rate Nice to see this impressive article and wanna say thanks a lot for providing this much pretty info. I would like to share this with my friends to explore more about this Reply Post Message Messages List Start a Board User Rank Stock Keeper Re: Anyone can pay to use the botnet Accamented1987 10/28/2016 8:08:48 AM NO RATINGS Login to Rate absolutely right, few days back a site of us on usa veterans got compromised. Reply Post Message Messages List Start a Board User Rank Blogger Anyone can pay to use the botnet Pablo Valerio 10/27/2016 2:41:35 PM Login to Rate It is not the first time that security of IoT devices becomes a serious concern. The main difference now is those devices are used to perform attacks on other industries, and the internet. I just attended the IoT Solutions World Congress here in Barcelona, and the DDoS attack has been one of the main topics. The industry is not only concerned about what hackers could do with the billions of devices that are going to be installed, but much more concerned with the several billion units already out there with low security and outdated software. Those botnets, unfortunately, are already there, ready to use by anyone who pays the price. Reply Post Message Messages List Start a Board	EBN Newswire 6/20/2019 ASCM Releases New Organizational Certification ... 6/20/2019 Umasankar Pingali appointed Business President of Newark 6/20/2019 LocatorX Selects NoiseFigure Research for Miniature ... 6/20/2019 edX, ASU & MIT Announce Innovative Stackable Online ... 6/20/2019 GE Appliances Grows in Georgia with $130 Million in ... 6/20/2019 Newark Celebrates Women in Engineering 6/14/2019 ECIA Analyst Dale Ford Webinar on Dynamic Industry ... 6/14/2019 Logistyx President Ken Fleming to Speak at Gartner ... 6/14/2019 Jaggaer Partners with EdgeVerve to Deliver Advanced ... 6/14/2019 GlobalFoundaries and Soitec Announce Multiple ... 6/14/2019 CDM’s New Manufacturing and Distribution Facility ... 6/14/2019 Mobile Industrial Robots (MiR) Launches MiR Finance – ... MORE NEWSWIRE Twitter Feed follow us Tweets about "from:EBNonline OR #EBNonline OR @EBNonline" Resources sponsored content How Harnessing Digital Trends Will Shape the Digital Enterprise Digital Manufacturing Drives Sustainability & Safety in the Workplace The Digital Economy & the Changing Supply Chain What it Means to Transition to Digital Manufacturing in the Digital Economy Introducing The Intelligent Digital Supply Chain MORE RESOURCES Latest Poll (3) Comments MORE POLLS EBN Dialogue / LIVE CHAT EBN Dialogue enables you to participate in live chats with notable leaders and luminaries. Open to the entire EBN community of electronics supply chain experts, these conversations see ideas shared, comments made, and questions asked and answered in real time. Listed below are upcoming and archived chats. Stay tuned and join in! Archived Dialogues Live Chat 01/15: CPOs Re-Shape Their Business Roles Increasingly chief procurement officers (CPOs) are re-shaping their organizational role to focus on creating results far beyond cost controls. A new IBM survey explores how. Read Live Chat 11/12: Examining the Cyberthreat to Supply Chains The number of cyberattacks is on the rise and hackers are targeting the supply chain. Drew Smith, founder and CEO of InfoArmor, will be on hand to discuss the reality of today's threat landscape and what to do about it. Read ALL ARCHIVED DIALOGUES


HOME BLOGS MESSAGE BOARDS RESEARCH \| Join Login ABOUT RSS Contact Us Help


	ASPENCORE NETWORK EBN \| EDN \| EE Times \| EE Times Europe \| EEWeb \| Electronic Products \| Electronics-Tutorials \| Embedded \| Planet Analog \| ElectroSchematics \| Power Electronics News \| TechOnline \| Datasheets.com \| Embedded Control Europe \| Embedded Know How \| Embedded News \| IOT Design Zone \| Motor Control Design \| Electronics Know How \| IoT Times \| GLOBAL NETWORK EE Times Asia \| EE Times China \| EE Times India \| EE Times Japan \| EE Times Taiwan \| EDN Asia \| EDN China \| EDN Taiwan \| EDN Japan \| ESM China \| Working With Us: About \| Contact Us \| Media Kits Terms of Service \| Privacy Statement \| Copyright © 2019 AspenCore All Rights Reserved






Home Blogs Message Boards Research Key Sections \| Sign Up / Sign In {* #signInForm } { signInEmailAddress } { currentPassword } Forgot your password? Create Account { /signInForm } Sign In Welcome back, { welcomeName }! { loginWidget } Use another account Sign In Welcome Back { #signInForm } { signInEmailAddress } { currentPassword } { /signInForm } Use another account Registration Please confirm the information below before signing in. Already have an account? Sign In. { #registrationForm } { emailAddress } { newPassword } { newPasswordConfirm } { displayName } { firstName } { lastName } { addressCountry } { companyName } { EBNJobfunction } { jobFunctionOther } { EBNIndustry } { industryOther } { optInRegistration } { optAgree } { optShare } { siteName } { backButton } { /registrationForm } Thank You for Registering Please wait you will be redirected shortly. Create New Password We'll send you a link to create a new password. { #forgotPasswordForm } { signInEmailAddress } { backButton } { /forgotPasswordForm } Create New Password We've sent an email with instructions to create a new password. Your existing password has not been changed. Close Resend Verification Email Sorry, we could not verify that email address. Enter your email below, and we'll send you another email. { #resendVerificationForm } { signInEmailAddress } { /resendVerificationForm } Verification Email Sent Check your email for a link to verify your email address. Sign in Email Verified Thank you for verifiying your email address. Sign in Change Password { #changePasswordFormNoAuth } { newPassword } { newPasswordConfirm } { /changePasswordFormNoAuth } Password Changed Your password has been successfully updated. Sign in Create New Password We didn't recognize that password reset code. Enter your email below, and we'll send you another email. { #resetPasswordForm } { signInEmailAddress } { /resetPasswordForm *} Create New Password We've sent you an email with instructions to create a new password. Your existing password has not been changed. Close Join Login About

Sitting at the Crossroads of Cybersecurity & Privacy - The combination of the headline ... Global Uncertainty Puts Resiliency in Focus - The 2019 FM Global Resilience Index ranks ... Huawei Block May Make U.S. Stumble - Huawei will be crippled by Trump, but in the long ... Capturing the Supply Chain Holy Grail: Community Intelligence - The past few years have ... Robotics Drives Supply Chain Profits - Here’s why integrating automation into warehouses ... Discovering the New World of Cross-Border E-Commerce - Cross-border sales may seem like an ...
	ERIK KANGAS OEMs Beware: These Days, Anything Can Be Hacked Bio Email This Print Comment Erik Kangas, Founder, LuxSci 10/27/2016 (4) comments NO RATINGS Login to Rate Tweet Imagine you're groggily driving to work one Monday morning when you're abruptly pulled out of your sleepy state by an unexpected spray of washer fluid across your windshield. You quickly turn on your wipers to rescue you from blindness when your music suddenly starts playing at a deafening volume. You can't get either distraction to stop, so you start to panic — what else could go wrong, and why is it happening? The above scenario is child's play compared to what a hacker sitting at home with a laptop can do. Imagine if they'd decided to lock up your steering wheel or disable your brakes? The fear is all too real. For many of us, getting hacked is our worst nightmare. We live in fear that someone will get ahold of our credit card information, Social Security number, or proprietary work documents. Unfortunately, the dangers are no longer limited to cyberspace. Hopefully, today's electronics OEMs are equally concerned about addressing these potential threats. Today's hackers can gain control of and manipulate your real-world environment, too. Let's take a look at how this is accomplished using some real-life examples and how electronics manufacturers should be getting involved. Exploiting hardware flaws If you're starting to feel a bit paranoid about the idea of strangers having the ability to access your physical space, then this example will put you at ease — in the sense that there's validation for your concern. Rowhammer, a new technique created as an example by Google researchers, is the main culprit. Rowhammer actually taps into the physical properties of computers, targeting dynamic random-access memory (DRAM) until it glitches and grants access to the computer's operating system. Rowhammer is a particularly interesting technique, as it goes "around" the operating system and firmware to change the system in ways that are invisible — all the better to avoid triggering any security alarms. Some new versions of RAM protect against this in various ways, such as faster refreshing of data, but there's a lot of old memory out there with a lot of valuable information stored on it. But Rowhammer is just one approach. Flip Feng Shui, for example, builds off of Rowhammer to "flip a bit in a memory page" to get at a vulnerable memory location. There are also the side-channel attacks, which allow exfiltration of data on air-gapped machines (machines not connected to the network). This is accomplished using software that sends the data via other means, such as the sound made by your computer or hard drive, the electromagnetic emissions from the screen, and so on. It may sound like a side plot from Mr. Robot, but operating system smarts can't block attacks aimed at hardware flaws like as these. Page 1 of 3 Next > Email This Print Comment COMMENTS View comments: newest first \| oldest first \| threaded [close this box] User Rank Stock Keeper wharton mba mobbydi 11/16/2016 9:53:22 AM NO RATINGS Login to Rate absolutely right article Reply Post Message Messages List Start a Board User Rank Stock Keeper prayer times Lily652 11/7/2016 1:20:55 PM NO RATINGS Login to Rate Nice to see this impressive article and wanna say thanks a lot for providing this much pretty info. I would like to share this with my friends to explore more about this Reply Post Message Messages List Start a Board User Rank Stock Keeper Re: Anyone can pay to use the botnet Accamented1987 10/28/2016 8:08:48 AM NO RATINGS Login to Rate absolutely right, few days back a site of us on usa veterans got compromised. Reply Post Message Messages List Start a Board User Rank Blogger Anyone can pay to use the botnet Pablo Valerio 10/27/2016 2:41:35 PM Login to Rate It is not the first time that security of IoT devices becomes a serious concern. The main difference now is those devices are used to perform attacks on other industries, and the internet. I just attended the IoT Solutions World Congress here in Barcelona, and the DDoS attack has been one of the main topics. The industry is not only concerned about what hackers could do with the billions of devices that are going to be installed, but much more concerned with the several billion units already out there with low security and outdated software. Those botnets, unfortunately, are already there, ready to use by anyone who pays the price. Reply Post Message Messages List Start a Board	EBN Newswire 6/20/2019 ASCM Releases New Organizational Certification ... 6/20/2019 Umasankar Pingali appointed Business President of Newark 6/20/2019 LocatorX Selects NoiseFigure Research for Miniature ... 6/20/2019 edX, ASU & MIT Announce Innovative Stackable Online ... 6/20/2019 GE Appliances Grows in Georgia with $130 Million in ... 6/20/2019 Newark Celebrates Women in Engineering 6/14/2019 ECIA Analyst Dale Ford Webinar on Dynamic Industry ... 6/14/2019 Logistyx President Ken Fleming to Speak at Gartner ... 6/14/2019 Jaggaer Partners with EdgeVerve to Deliver Advanced ... 6/14/2019 GlobalFoundaries and Soitec Announce Multiple ... 6/14/2019 CDM’s New Manufacturing and Distribution Facility ... 6/14/2019 Mobile Industrial Robots (MiR) Launches MiR Finance – ... MORE NEWSWIRE Twitter Feed follow us Tweets about "from:EBNonline OR #EBNonline OR @EBNonline" Resources sponsored content How Harnessing Digital Trends Will Shape the Digital Enterprise Digital Manufacturing Drives Sustainability & Safety in the Workplace The Digital Economy & the Changing Supply Chain What it Means to Transition to Digital Manufacturing in the Digital Economy Introducing The Intelligent Digital Supply Chain MORE RESOURCES Latest Poll (3) Comments MORE POLLS EBN Dialogue / LIVE CHAT EBN Dialogue enables you to participate in live chats with notable leaders and luminaries. Open to the entire EBN community of electronics supply chain experts, these conversations see ideas shared, comments made, and questions asked and answered in real time. Listed below are upcoming and archived chats. Stay tuned and join in! Archived Dialogues Live Chat 01/15: CPOs Re-Shape Their Business Roles Increasingly chief procurement officers (CPOs) are re-shaping their organizational role to focus on creating results far beyond cost controls. A new IBM survey explores how. Read Live Chat 11/12: Examining the Cyberthreat to Supply Chains The number of cyberattacks is on the rise and hackers are targeting the supply chain. Drew Smith, founder and CEO of InfoArmor, will be on hand to discuss the reality of today's threat landscape and what to do about it. Read ALL ARCHIVED DIALOGUES


HOME BLOGS MESSAGE BOARDS RESEARCH \| Join Login ABOUT RSS Contact Us Help


	ASPENCORE NETWORK EBN \| EDN \| EE Times \| EE Times Europe \| EEWeb \| Electronic Products \| Electronics-Tutorials \| Embedded \| Planet Analog \| ElectroSchematics \| Power Electronics News \| TechOnline \| Datasheets.com \| Embedded Control Europe \| Embedded Know How \| Embedded News \| IOT Design Zone \| Motor Control Design \| Electronics Know How \| IoT Times \| GLOBAL NETWORK EE Times Asia \| EE Times China \| EE Times India \| EE Times Japan \| EE Times Taiwan \| EDN Asia \| EDN China \| EDN Taiwan \| EDN Japan \| ESM China \| Working With Us: About \| Contact Us \| Media Kits Terms of Service \| Privacy Statement \| Copyright © 2019 AspenCore All Rights Reserved