Making the unhackable hackable
Air gapped, not as "Gapped" as expected.
As long as I don’t connect my server with all my classified information to the network at all it will be fine right?
Unfortunately, even those without a network or “Air Gapped” servers are vulnerable to some super interesting exploits that can cause a system to break. I found a recent article on Dark reading and even a Podcast by TWIT brought me down a rabbit hole of looking into the kinds of hacks that can even hit systems off the web.
The kinds of attacks
RAMBO
I don’t want to take the thunder away from Dr. Mordechai Guri on this exploit so I’ll go over the basics. Thanks to the ability of RAM to generate RF signals if they are given the correct instruction. So data could be exfiltrated from the system itself! It is slow, but you only need a bit to get encryption keys, etc, etc. Take a look at the above video! Its pretty insane!
Pix Hell
Screens. The bane of our existence appearently? If already comprimised data exfil through seemingly random image noise seems crazy! But as before Dr. Mordechai Guri strikes again with another demonstration of data exfiltration from a air gapped computer without anything on!
In Conclusion
These are a small number of attacks out of the many that are document out there. it just makes you remind yourself that everything can be vulnerable even if you think it is off the grid. Take the time to pay attention to detail and ensure to keep up to date if you keep important air gapped servers like these.