Overview
Explore the security vulnerabilities of centrally-controlled smart homes in this conference talk from the Hack In The Box Security Conference. Delve into the analytical methods used to hack smart home systems, focusing on the South Korean market where three companies dominate 90% of the industry. Learn about the entire structure of smart homes, including network separation systems, network diagrams, and potential attack vectors. Discover techniques for accessing firmware through update servers, hardware hacking, and exploiting software logical bugs. Watch demonstrations of remote attacks on systems isolated from external networks, including opening door locks, controlling common gates, lighting, heating, and gas valves. Gain insights into the physical threats posed by compromised smart home platforms and the importance of securing these increasingly popular IoT ecosystems.
Syllabus
#HITB2019AMS D1T1 - Pwning Centrally-Controlled Smart Homes - Sanghyun Park and Seongjoon Cho
Taught by
Hack In The Box Security Conference