A team comprised of Sean "xobs" Cross and Xbox hacker Andrew "bunnie" Huang has demonstrated an exploit that allows SD memory cards to be used for man-in-the-middle attacks. Rather than relying on software residing in the SD card's regular pool of user-accessible flash memory, the exploit allows malicious code to be injected directly into the device's firmware. That firmware governs how SD cards and other NAND-based devices manage their flash memory, giving it access to the onboard microcontroller in addition to all incoming and outgoing data.
The exploit was demonstrated with SD cards based on a flash controller from Appotech, but Huang says all "managed NAND" devices could be vulnerable, including SSDs and USB thumb drives. The problem seems to be a lack of security surrounding the firmware update process for flash controllers. More details are available in an hour-long presentation given during the Chaos Computer Congress:
Huang has already seen Chinese vendors loading custom firmware onto SD cards that misrepresents the amount of onboard storage. Now, it's apparently possible to load much more nefarious code.
The vulnerability doesn't have to be used for evil, though. According to Huang, the exploit allows SD cards to be used as a cheap source of microcontrollers for DIY projects. The processors inside common SD cards offer "several times the performance" of an Arduino CPU at "a fraction of the price," Huang says.
|1. BIF - $340||2. chasp_0 - $251||3. mbutrovich - $250|
|4. Ryu Connor - $250||5. YetAnotherGeek2 - $200||6. aeassa - $175|
|7. dashbarron - $150||8. Lucky Jack Aubrey - $100||9. Captain Ned - $100|
|10. Anonymous Gerbil - $100|
|Intel debuts embedded Skylake-R CPUs with Iris Pro graphics||47|
|Chromebooks get multi-monitor support with DisplayLink||2|
|AMD bolsters its budget storage options with its R3 SSDs||11|
|Radeon Software 16.5.1 drivers fix Forza follies||5|
|Fallout 4 gets more love from Bethesda with Far Harbor expansion||17|
|AMD adds refresh-rate ranges to its FreeSync monitor page||38|
|Rumor: Early Broadwell-E benches hint at solid performance gains||87|
|HP refreshes Pavilion consumer PC lineup||17|
|Nvidia teases Pascal GeForces amid GTX 1000-series rumors||56|