The Colloquium (CISSE)
The Colloquium

Industry News

18
Dec
2020

Academics turn RAM into Wi-Fi cards to steal data from air-gapped systems

  • 18 Dec 2020
  • 18 Dec 2020
  • 2378

AIR-FI technique can send stolen data at speeds of up to 100 b/s to Wi-Fi receivers at a distance of a few meters.

Academics from an Israeli university have published new research today detailing a technique to convert a RAM card into an impromptu wireless emitter and transmit sensitive data from inside a non-networked air-gapped computer that has no Wi-Fi card. Named AIR-FI, the technique is the work of Mordechai Guri, the head of R&D at the Ben-Gurion University of the Negev, in Israel.

Over the last half-decade, Guri has led tens of research projects that investigated stealing data through unconventional methods from air-gapped systems. These types of techniques are what security researchers call "covert data exfiltration channels". They are not techniques to break into computers, but techniques that can be used to steal data in ways defenders aren't expecting. Such data exfiltration channels are not a danger for normal users, but they are a constant threat for the administrators of air-gapped networks.

Air-gapped systems are computers isolated on local networks with no external internet access. Air-gapped systems are often used on government, military, or corporate networks to store sensitive data, such as classified files or intellectual property.

While AIR-FI would be considered a "stunt hack" in the threat model of normal users, it is, however, the type of attack that forces many companies to reconsider the architecture of their air-gapped systems that store high-value assets.

For the complete article, please visit:
https://www.zdnet.com/article/academics-turn-ram-into-wifi-cards-to-steal-data-from-air-gapped-systems/

Author: Catalin Cimpanu

28th Colloquium

November 13 - 15, 2024

The 28th Colloquium will be held in November 2024 in Florida at The University of Tampa. The program is continuously evolving, so please bookmark the link below for the latest updates.

Call for Papers

The Editorial Committee invites paper submissions to the 28th Colloquium. Please submit an original, unpublished paper, in the field of Cybersecurity Education by August 15th.

Sponsorship

CISSE offers a distinctive platform for showcasing your organization with precision, targeting not just cybersecurity enthusiasts, but the educators in cybersecurity.

Journal - Winter 2024

The latest edition of The Colloquium Journal is available for purchase, with select articles available on CISSE's Open Journal repository.

CISSE

The Colloquium recognizes that the protection of information and infrastructures that are used to create, store, process, and communicate information is vital to business continuity and security. The goal of The Colloquium is to work together to define current and emerging requirements for information assurance education and to influence and encourage the development and expansion of information assurance curricula, especially at the graduate and undergraduate levels.

GuideStar Seal of Transparency

CISSE earned a Silver Seal with GuideStar. See our non-profit profile to learn more and make a difference with your support.

Guidestar Profile

If you value our mission of service, please consider making a donation, or supporting the organization through charitable pledges.

Donate via Pledge
Donate via Network for Good

Recent Posts

22 Mar 2024
28th Colloquium - Writers Workshop

CISSE's next Writers Workshop is scheduled for April 25, 2024. This series is tailored for professionals and academics seeking to enhance their publication skills and amplify the impact of their research. This webinar is complimentary and will be hosted by CISSE's Editorial Committee.

10 Mar 2024
28th Colloquium - Opportunities

The Colloquium for Information Systems Security Education offers a distinctive platform for showcasing your organization with precision, targeting not just cybersecurity enthusiasts, but the educators in cybersecurity.

Copyright © 2024 CISSE. All rights reserved.