Explore the world of asset intelligence and cybersecurity threats in this 38-minute conference talk from Conf42 DevSecOps 2023. Delve into the dirty secrets of extended Internet of Things (xIoT) devices, examining their vulnerabilities and internet accessibility. Analyze research statistics and uncover dangerous lies surrounding common xIoT attack types, including RSocks, physical attacks, Fronton, OEM attacks, illegal xIoT devices, pivot attacks, and QuietExit. Witness live hacking demonstrations targeting industrial cameras and robots, highlighting the real-world risks. Learn about effective remediation strategies and the importance of visibility through asset intelligence platforms. Gain valuable insights into protecting your organization's infrastructure and consider implementing a free proof of concept to enhance your cybersecurity posture.
Hacking Demos: Dangerous Lies and Asset Intelligence in IoT Security
Overview
Syllabus
intro
preamble
asset intelligence
dirty secrets: xiot
internet-accessible xiot
research stats
dangerous lies - common xiot attack types
rsocks
- physical
- fronton
- oem attacks
- illegal xiot devices
- pivot attacks
- quietexit
demo 1 - industrial camera
demo 2 - hacking industrial robots
remediation, visibility with an asset intelligence platform
try it. a free poc only takes 60 minutes
thanks
Taught by
Conf42
