This session will explore research into Comcast’s XR11 voice remote and how the WarezTheRemote research project used a man-in-the-middle attack to exploit the remote's RF communication with the set-top box and over-the-air firmware upgrades. By pushing a malicious firmware image back to the remote, attackers could have used the remote to continuously record audio without user interaction.

RSA® Conference, the world’s leading information security conferences and expositions, concluded its 30th annual event, which took place as a fully virtual experience this week. This year’s theme was Resilience, and in honor of all that the cybersecurity industry has accomplished over the past three decades, offered a must-attend celebration of thought leadership and education.


More than 20,000 people registered to view 449 sessions including, keynotes, track sessions, interactive programs, tutorials, seminars, and many special digital-first programs that focused on best practices and innovation. The content covered many of the industry’s most pressing topics, including privacy, machine learning and artificial intelligence, analytics, anti-fraud, policy and government, and risk management and governance.

WarezTheRemote? Under the Couch, and Listening to You

Conference: RSA Conference 2021

Abstract

Post a comment

Related work

Over-the-air remote code execution on the DEF CON 27 badge via Near Field Magnetic Inductance or World’s first NFMI exploitation, sorta or OTARCEDC27NFMIOMGWTFBBQ

Open Sesame: Picking Locks with Cortana

HTTP Desync Attacks: Request Smuggling Reborn

The Most Secure Browser? Pwning Chrome from 2016 to 2019

Breaking Google Home: Exploit It with SQLite(Magellan)

Your Secret Files Are Mine: Bug Finding And Exploit Techniques On File Transfer App Of All Top Android Vendors