What is "Red Button Attack" that can hack almost all smart TVs on the market?


BySamsungTomorrow

Apple TVOr Amazon'sFire TVAnd others, and Panasonic has developed smart TV of the next generation equipped with Firefox OS, and users of smart TV are increasing all over the world. In the United States, Europe, Canada, Mexico, etc., "ATSC standard" is adopted as the digital TV standard, but "ATSC standard"Red button attack"That most ATSC-compliant HBBTV (smart TV) on the market could be attackedColumbia University Network Security Laboratory(NSL) has warned.

IssoY nerO - Yossef Oren, Angelos D. Keromytis: From the Aether to the Ethernet - Attacking the Internet using Broadcast Digital Television
http://iss.oy.ne.ro/Aether

Red Button Flaw Exposes Major Vulnerability In Millions of Smart TVs - Forbes
http://www.forbes.com/sites/bruceupbin/2014/06/06/red-button-flaw-exposes-major-vulnerability-in-millions-of-smart-tvs/

Mr. Yoshi Oren and College of Network Security Research Laboratories Colombia University and Angelo Keroromytis and others said that HBBTV (Smart TV)ATSCI found a vulnerability related to standards. The ATSC standard has been adopted in North America and Europe, and it is about to be adopted in many parts of the United States. Because this vulnerability makes it possible to embed malicious code in the radio waves transmitted from the radio tower, it is said to be compatible with any brand smart TV compliant with the ATSC standard. From the red button on the Smart TV remote control "Red button attackIt is called.


With the red button attack, users may be accessing personal information, mail accounts, Internet shopping sites, etc. included in smart TVs in the background while watching TV, and to home security such as Wi-Fi router and PC It is possible to think of attacks. By the same method,CBS·NBC·FoxThere are also mentioned the risk of hijacking 10 TV stations such as.

Mr. Olen and Mr. Keromytis announced a paper at USENIX Security Symposium on this vulnerability in August 2013 and released a video on smart TV hacking in December but it was not possible to cover a sufficient population and cost efficiency It was thought that it would not be used because it was bad. Meanwhile, Mr. Oren explains, "Hackers can cover the population of more than 70,000 people in an area of ​​1.4 square kilometers with an output 1 W amplifier of 250 dollars (about 25,000 yen)" I will.


Amplifiers are expected to be installed on rooftops and drones of high-rise buildings near large radio towers, and with a more powerful $ 1,500 output 25 W amplifier, within 35 kilometers of square meters It is also possible to reach hundreds of thousands of people living. Since these attacks do not go through IP addresses or DNS servers, hackers can realize a perfect intermediary attack, which is characterized by very difficult to track. Mr. Olen cites "to not connect smart TV to the net" as the most reliable countermeasure.


In Japan, as a digital television standardISDB-TSince it is adopted, there is no concern that smart TV will be hacked through radio waves unless similar vulnerabilities are found.

in Note,   Hardware, Posted by darkhorse_log