Hacking Air-Gapped Networks

by Pierluigi Paganini
Oct. 7, 2017 0 comments INFOSEC Institute Pen Testing & Audits

Air-gapped networks aren’t totally secure, there are several ways to exfiltrate information from computers isolated from the internet. Each technique relies on a different vector to carry out data, from acoustic to electromagnetic waves. The methods could also be exploited to exfiltrate information from Internet-connected systems whose network traffic is carefully monitored and inspected to avoid the theft of sensitive data. March 2105 – BitWhisper – hacking Air-Gapped PCs through heat emissions In 2015, security researchers at the Israeli Ben Gurion University (Mordechai Guri, Matan Munitz and the professor Yuval Elovici) devised a method to establish a covert channel that can be used to steal information from computers in air-gapped networks by detecting the heat from one computer to a near machine.