OEMs Beware: These Days, Anything Can Be Hacked






Home Blogs Message Boards Research Key Sections \| Sign Up / Sign In {* #signInForm } { signInEmailAddress } { currentPassword } Forgot your password? Create Account { /signInForm } Sign In Welcome back, { welcomeName }! { loginWidget } Use another account Sign In Welcome Back { #signInForm } { signInEmailAddress } { currentPassword } { /signInForm } Use another account Registration Please confirm the information below before signing in. Already have an account? Sign In. { #registrationForm } { emailAddress } { newPassword } { newPasswordConfirm } { displayName } { firstName } { lastName } { addressCountry } { companyName } { EBNJobfunction } { jobFunctionOther } { EBNIndustry } { industryOther } { optInRegistration } { optAgree } { optShare } { siteName } { backButton } { /registrationForm } Thank You for Registering Please wait you will be redirected shortly. Create New Password We'll send you a link to create a new password. { #forgotPasswordForm } { signInEmailAddress } { backButton } { /forgotPasswordForm } Create New Password We've sent an email with instructions to create a new password. Your existing password has not been changed. Close Resend Verification Email Sorry, we could not verify that email address. Enter your email below, and we'll send you another email. { #resendVerificationForm } { signInEmailAddress } { /resendVerificationForm } Verification Email Sent Check your email for a link to verify your email address. Sign in Email Verified Thank you for verifiying your email address. Sign in Change Password { #changePasswordFormNoAuth } { newPassword } { newPasswordConfirm } { /changePasswordFormNoAuth } Password Changed Your password has been successfully updated. Sign in Create New Password We didn't recognize that password reset code. Enter your email below, and we'll send you another email. { #resetPasswordForm } { signInEmailAddress } { /resetPasswordForm *} Create New Password We've sent you an email with instructions to create a new password. Your existing password has not been changed. Close Join Login About

“Earth Day” Mentality Here to Stay - As climate change issues continue to dominate ... Put Quality in the Supply Chain - Applying the right quality systems and metrics is ... Getting Smart about Artificial Intelligence - Artificial intelligence (AI) promises huge ... Worker Shortages Plague EU Electronics OEMs - The European Union (EU) fears its workforce ... Racecars & Printers: My Week at the Additive Manufacturers User Group - Additive ... Shrinking Inventories Create Supply Chain Pitfalls - The current concerns about tariffs ...
	ERIK KANGAS OEMs Beware: These Days, Anything Can Be Hacked Bio Email This Print Comment Erik Kangas, Founder, LuxSci 10/27/2016 (4) comments NO RATINGS Login to Rate Tweet Imagine you're groggily driving to work one Monday morning when you're abruptly pulled out of your sleepy state by an unexpected spray of washer fluid across your windshield. You quickly turn on your wipers to rescue you from blindness when your music suddenly starts playing at a deafening volume. You can't get either distraction to stop, so you start to panic — what else could go wrong, and why is it happening? The above scenario is child's play compared to what a hacker sitting at home with a laptop can do. Imagine if they'd decided to lock up your steering wheel or disable your brakes? The fear is all too real. For many of us, getting hacked is our worst nightmare. We live in fear that someone will get ahold of our credit card information, Social Security number, or proprietary work documents. Unfortunately, the dangers are no longer limited to cyberspace. Hopefully, today's electronics OEMs are equally concerned about addressing these potential threats. Today's hackers can gain control of and manipulate your real-world environment, too. Let's take a look at how this is accomplished using some real-life examples and how electronics manufacturers should be getting involved. Exploiting hardware flaws If you're starting to feel a bit paranoid about the idea of strangers having the ability to access your physical space, then this example will put you at ease — in the sense that there's validation for your concern. Rowhammer, a new technique created as an example by Google researchers, is the main culprit. Rowhammer actually taps into the physical properties of computers, targeting dynamic random-access memory (DRAM) until it glitches and grants access to the computer's operating system. Rowhammer is a particularly interesting technique, as it goes "around" the operating system and firmware to change the system in ways that are invisible — all the better to avoid triggering any security alarms. Some new versions of RAM protect against this in various ways, such as faster refreshing of data, but there's a lot of old memory out there with a lot of valuable information stored on it. But Rowhammer is just one approach. Flip Feng Shui, for example, builds off of Rowhammer to "flip a bit in a memory page" to get at a vulnerable memory location. There are also the side-channel attacks, which allow exfiltration of data on air-gapped machines (machines not connected to the network). This is accomplished using software that sends the data via other means, such as the sound made by your computer or hard drive, the electromagnetic emissions from the screen, and so on. It may sound like a side plot from Mr. Robot, but operating system smarts can't block attacks aimed at hardware flaws like as these. Page 1 of 3 Next > Email This Print Comment COMMENTS View comments: newest first \| oldest first \| threaded [close this box] User Rank Stock Keeper wharton mba mobbydi 11/16/2016 9:53:22 AM NO RATINGS Login to Rate absolutely right article Reply Post Message Messages List Start a Board User Rank Stock Keeper prayer times Lily652 11/7/2016 1:20:55 PM NO RATINGS Login to Rate Nice to see this impressive article and wanna say thanks a lot for providing this much pretty info. I would like to share this with my friends to explore more about this Reply Post Message Messages List Start a Board User Rank Stock Keeper Re: Anyone can pay to use the botnet Accamented1987 10/28/2016 8:08:48 AM NO RATINGS Login to Rate absolutely right, few days back a site of us on usa veterans got compromised. Reply Post Message Messages List Start a Board User Rank Blogger Anyone can pay to use the botnet Pablo Valerio 10/27/2016 2:41:35 PM Login to Rate It is not the first time that security of IoT devices becomes a serious concern. The main difference now is those devices are used to perform attacks on other industries, and the internet. I just attended the IoT Solutions World Congress here in Barcelona, and the DDoS attack has been one of the main topics. The industry is not only concerned about what hackers could do with the billions of devices that are going to be installed, but much more concerned with the several billion units already out there with low security and outdated software. Those botnets, unfortunately, are already there, ready to use by anyone who pays the price. Reply Post Message Messages List Start a Board	EBN Newswire 4/23/2019 Scout RFP Advances Customer Focus with Leadership Team ... 4/18/2019 DHL Relocates Minneapolis Operations to Increase ... 4/18/2019 Fexco’s OpenConnect Solution Achieves Oracle Validated ... 4/18/2019 TrueCommerce Datalliance Releases First Platform ... 4/18/2019 Syncron Continues Year-Over-Year Profitable Growth and ... 4/17/2019 Arrive Logistics Appoints Seasoned Leadership to ... 4/17/2019 Diesel & The Future of Trucking 4/17/2019 Future Electronics and ams to Host Free Webinar on ... 4/17/2019 Carriers Urged to Develop Solution for Sheltering ... 4/12/2019 New Compact DC/DC Converters from RECOM Now Available ... 4/12/2019 New Financial Service Offers Software Companies a ... 4/12/2019 Ivalua Announces Search360, Delivering Advanced ... MORE NEWSWIRE Resources sponsored content How Harnessing Digital Trends Will Shape the Digital Enterprise Digital Manufacturing Drives Sustainability & Safety in the Workplace The Digital Economy & the Changing Supply Chain What it Means to Transition to Digital Manufacturing in the Digital Economy Introducing The Intelligent Digital Supply Chain MORE RESOURCES Latest Poll (3) Comments MORE POLLS Twitter Feed follow us Tweets about "from:EBNonline OR #EBNonline OR @EBNonline" EBN Dialogue / LIVE CHAT EBN Dialogue enables you to participate in live chats with notable leaders and luminaries. Open to the entire EBN community of electronics supply chain experts, these conversations see ideas shared, comments made, and questions asked and answered in real time. Listed below are upcoming and archived chats. Stay tuned and join in! Archived Dialogues Live Chat 01/15: CPOs Re-Shape Their Business Roles Increasingly chief procurement officers (CPOs) are re-shaping their organizational role to focus on creating results far beyond cost controls. A new IBM survey explores how. Read Live Chat 11/12: Examining the Cyberthreat to Supply Chains The number of cyberattacks is on the rise and hackers are targeting the supply chain. Drew Smith, founder and CEO of InfoArmor, will be on hand to discuss the reality of today's threat landscape and what to do about it. Read ALL ARCHIVED DIALOGUES


HOME BLOGS MESSAGE BOARDS RESEARCH \| Join Login ABOUT RSS Contact Us Help


	ASPENCORE NETWORK EBN \| EDN \| EE Times \| EE Times Europe \| EEWeb \| Electronic Products \| Electronics-Tutorials \| Embedded \| Planet Analog \| ElectroSchematics \| Power Electronics News \| TechOnline \| Datasheets.com \| Embedded Control Europe \| Embedded Know How \| Embedded News \| IOT Design Zone \| Motor Control Design \| Electronics Know How \| IoT Times \| GLOBAL NETWORK EE Times Asia \| EE Times China \| EE Times India \| EE Times Japan \| EE Times Taiwan \| EDN Asia \| EDN China \| EDN Taiwan \| EDN Japan \| ESM China \| Working With Us: About \| Contact Us \| Media Kits Terms of Service \| Privacy Statement \| Copyright © 2019 AspenCore All Rights Reserved






Home Blogs Message Boards Research Key Sections \| Sign Up / Sign In {* #signInForm } { signInEmailAddress } { currentPassword } Forgot your password? Create Account { /signInForm } Sign In Welcome back, { welcomeName }! { loginWidget } Use another account Sign In Welcome Back { #signInForm } { signInEmailAddress } { currentPassword } { /signInForm } Use another account Registration Please confirm the information below before signing in. Already have an account? Sign In. { #registrationForm } { emailAddress } { newPassword } { newPasswordConfirm } { displayName } { firstName } { lastName } { addressCountry } { companyName } { EBNJobfunction } { jobFunctionOther } { EBNIndustry } { industryOther } { optInRegistration } { optAgree } { optShare } { siteName } { backButton } { /registrationForm } Thank You for Registering Please wait you will be redirected shortly. Create New Password We'll send you a link to create a new password. { #forgotPasswordForm } { signInEmailAddress } { backButton } { /forgotPasswordForm } Create New Password We've sent an email with instructions to create a new password. Your existing password has not been changed. Close Resend Verification Email Sorry, we could not verify that email address. Enter your email below, and we'll send you another email. { #resendVerificationForm } { signInEmailAddress } { /resendVerificationForm } Verification Email Sent Check your email for a link to verify your email address. Sign in Email Verified Thank you for verifiying your email address. Sign in Change Password { #changePasswordFormNoAuth } { newPassword } { newPasswordConfirm } { /changePasswordFormNoAuth } Password Changed Your password has been successfully updated. Sign in Create New Password We didn't recognize that password reset code. Enter your email below, and we'll send you another email. { #resetPasswordForm } { signInEmailAddress } { /resetPasswordForm *} Create New Password We've sent you an email with instructions to create a new password. Your existing password has not been changed. Close Join Login About

“Earth Day” Mentality Here to Stay - As climate change issues continue to dominate ... Put Quality in the Supply Chain - Applying the right quality systems and metrics is ... Getting Smart about Artificial Intelligence - Artificial intelligence (AI) promises huge ... Worker Shortages Plague EU Electronics OEMs - The European Union (EU) fears its workforce ... Racecars & Printers: My Week at the Additive Manufacturers User Group - Additive ... Shrinking Inventories Create Supply Chain Pitfalls - The current concerns about tariffs ...
	ERIK KANGAS OEMs Beware: These Days, Anything Can Be Hacked Bio Email This Print Comment Erik Kangas, Founder, LuxSci 10/27/2016 (4) comments NO RATINGS Login to Rate Tweet Imagine you're groggily driving to work one Monday morning when you're abruptly pulled out of your sleepy state by an unexpected spray of washer fluid across your windshield. You quickly turn on your wipers to rescue you from blindness when your music suddenly starts playing at a deafening volume. You can't get either distraction to stop, so you start to panic — what else could go wrong, and why is it happening? The above scenario is child's play compared to what a hacker sitting at home with a laptop can do. Imagine if they'd decided to lock up your steering wheel or disable your brakes? The fear is all too real. For many of us, getting hacked is our worst nightmare. We live in fear that someone will get ahold of our credit card information, Social Security number, or proprietary work documents. Unfortunately, the dangers are no longer limited to cyberspace. Hopefully, today's electronics OEMs are equally concerned about addressing these potential threats. Today's hackers can gain control of and manipulate your real-world environment, too. Let's take a look at how this is accomplished using some real-life examples and how electronics manufacturers should be getting involved. Exploiting hardware flaws If you're starting to feel a bit paranoid about the idea of strangers having the ability to access your physical space, then this example will put you at ease — in the sense that there's validation for your concern. Rowhammer, a new technique created as an example by Google researchers, is the main culprit. Rowhammer actually taps into the physical properties of computers, targeting dynamic random-access memory (DRAM) until it glitches and grants access to the computer's operating system. Rowhammer is a particularly interesting technique, as it goes "around" the operating system and firmware to change the system in ways that are invisible — all the better to avoid triggering any security alarms. Some new versions of RAM protect against this in various ways, such as faster refreshing of data, but there's a lot of old memory out there with a lot of valuable information stored on it. But Rowhammer is just one approach. Flip Feng Shui, for example, builds off of Rowhammer to "flip a bit in a memory page" to get at a vulnerable memory location. There are also the side-channel attacks, which allow exfiltration of data on air-gapped machines (machines not connected to the network). This is accomplished using software that sends the data via other means, such as the sound made by your computer or hard drive, the electromagnetic emissions from the screen, and so on. It may sound like a side plot from Mr. Robot, but operating system smarts can't block attacks aimed at hardware flaws like as these. Page 1 of 3 Next > Email This Print Comment COMMENTS View comments: newest first \| oldest first \| threaded [close this box] User Rank Stock Keeper wharton mba mobbydi 11/16/2016 9:53:22 AM NO RATINGS Login to Rate absolutely right article Reply Post Message Messages List Start a Board User Rank Stock Keeper prayer times Lily652 11/7/2016 1:20:55 PM NO RATINGS Login to Rate Nice to see this impressive article and wanna say thanks a lot for providing this much pretty info. I would like to share this with my friends to explore more about this Reply Post Message Messages List Start a Board User Rank Stock Keeper Re: Anyone can pay to use the botnet Accamented1987 10/28/2016 8:08:48 AM NO RATINGS Login to Rate absolutely right, few days back a site of us on usa veterans got compromised. Reply Post Message Messages List Start a Board User Rank Blogger Anyone can pay to use the botnet Pablo Valerio 10/27/2016 2:41:35 PM Login to Rate It is not the first time that security of IoT devices becomes a serious concern. The main difference now is those devices are used to perform attacks on other industries, and the internet. I just attended the IoT Solutions World Congress here in Barcelona, and the DDoS attack has been one of the main topics. The industry is not only concerned about what hackers could do with the billions of devices that are going to be installed, but much more concerned with the several billion units already out there with low security and outdated software. Those botnets, unfortunately, are already there, ready to use by anyone who pays the price. Reply Post Message Messages List Start a Board	EBN Newswire 4/23/2019 Scout RFP Advances Customer Focus with Leadership Team ... 4/18/2019 DHL Relocates Minneapolis Operations to Increase ... 4/18/2019 Fexco’s OpenConnect Solution Achieves Oracle Validated ... 4/18/2019 TrueCommerce Datalliance Releases First Platform ... 4/18/2019 Syncron Continues Year-Over-Year Profitable Growth and ... 4/17/2019 Arrive Logistics Appoints Seasoned Leadership to ... 4/17/2019 Diesel & The Future of Trucking 4/17/2019 Future Electronics and ams to Host Free Webinar on ... 4/17/2019 Carriers Urged to Develop Solution for Sheltering ... 4/12/2019 New Compact DC/DC Converters from RECOM Now Available ... 4/12/2019 New Financial Service Offers Software Companies a ... 4/12/2019 Ivalua Announces Search360, Delivering Advanced ... MORE NEWSWIRE Resources sponsored content How Harnessing Digital Trends Will Shape the Digital Enterprise Digital Manufacturing Drives Sustainability & Safety in the Workplace The Digital Economy & the Changing Supply Chain What it Means to Transition to Digital Manufacturing in the Digital Economy Introducing The Intelligent Digital Supply Chain MORE RESOURCES Latest Poll (3) Comments MORE POLLS Twitter Feed follow us Tweets about "from:EBNonline OR #EBNonline OR @EBNonline" EBN Dialogue / LIVE CHAT EBN Dialogue enables you to participate in live chats with notable leaders and luminaries. Open to the entire EBN community of electronics supply chain experts, these conversations see ideas shared, comments made, and questions asked and answered in real time. Listed below are upcoming and archived chats. Stay tuned and join in! Archived Dialogues Live Chat 01/15: CPOs Re-Shape Their Business Roles Increasingly chief procurement officers (CPOs) are re-shaping their organizational role to focus on creating results far beyond cost controls. A new IBM survey explores how. Read Live Chat 11/12: Examining the Cyberthreat to Supply Chains The number of cyberattacks is on the rise and hackers are targeting the supply chain. Drew Smith, founder and CEO of InfoArmor, will be on hand to discuss the reality of today's threat landscape and what to do about it. Read ALL ARCHIVED DIALOGUES


HOME BLOGS MESSAGE BOARDS RESEARCH \| Join Login ABOUT RSS Contact Us Help


	ASPENCORE NETWORK EBN \| EDN \| EE Times \| EE Times Europe \| EEWeb \| Electronic Products \| Electronics-Tutorials \| Embedded \| Planet Analog \| ElectroSchematics \| Power Electronics News \| TechOnline \| Datasheets.com \| Embedded Control Europe \| Embedded Know How \| Embedded News \| IOT Design Zone \| Motor Control Design \| Electronics Know How \| IoT Times \| GLOBAL NETWORK EE Times Asia \| EE Times China \| EE Times India \| EE Times Japan \| EE Times Taiwan \| EDN Asia \| EDN China \| EDN Taiwan \| EDN Japan \| ESM China \| Working With Us: About \| Contact Us \| Media Kits Terms of Service \| Privacy Statement \| Copyright © 2019 AspenCore All Rights Reserved