Bridge Attack: Double-edged Sword in MobileSec

Presented at DEF CON China 1.0 (2019), May 31, 2019, noon (20 minutes).

Bridge Attack(BA) is new attack surface for mobile phone and IoT devices in LAN. The abstract bridge is usually implemented by some custom schemes or protocols, such as Javascript Bridge in webview, Upnp Protocol in IoT. In some cases, the Bridge's expanded ability makes the risks of devices in LAN, and the vulnerability can be persistently exploited with a common web attack（Eg. XSS/CSRF)

Bridge Attack finds the potential vulnerability in communication between internal and external components. We think that external component gives more data-flow attack entries which should be checked identification in the internal component. That means bridge attack makes devices in LAN face more attack risks which can lead to remote code execution, sensitive data leak and IOT devices being controlled.

Presenters:

• Zidong Han - Tencent Mobile Security Labs，Razor Team
  Zidong Han, is an android security researcher from Tencent Mobile Security Lab, Razor Team. Focuses on mobile security research, especially App vulnerability and IOT related security research, Attended HITB-SECCONF-2018-Beijing,as a speaker in CommSec:《Who Hijacked My Smart Home: One URL to Hack ALL IoT Devices 》Attended GeekPwn 2018, Hack Pwn in House. Found and exploited more than 20 vulnerabilities in eight kinds of IoT devices. WeChat: hzddm12340

Links:

• https://defcon.org/html/dc-china-1/dc-cn-1-speakers.html#Han
• https://infocon.org/cons/DEF CON/DEF CON China 1/DEF CON China 1 videos/DEF CON China 1 - Bridge Attack Double-edged Sword in MobileSec - Zidong Han.mp4

Similar Presentations:

• DEF CON 17 (2009) / Is That You, Baby, or Just a Bridge in the Sky?
• DEF CON 19 (2011) / A Bridge Too Far: Defeating Wired 802.1x with a Transparent Bridge Using Linux
• May Contain Hackers (MCH2022) / Popsicle Bridge Building Competition