Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. Micah Lee πŸ”‘ (micahflee@mastodon.social)'s status on Saturday, 28-Apr-2018 16:20:01 EDT Micah Lee 🔑 Micah Lee πŸ”‘

    For the last two years I've carried a honeypot laptop with me every time I traveled. I checked it in my luggage, left it unattended in my hotel rooms. After each trip, I did forensic analysis on the laptop to detect if it had been tampered with.

    I wrote about my experience and methodology here: https://theintercept.com/2018/04/28/computer-malware-tampering/

    In conversation Saturday, 28-Apr-2018 16:20:01 EDT from mastodon.social permalink
    1. Micah Lee πŸ”‘ (micahflee@mastodon.social)'s status on Saturday, 28-Apr-2018 16:23:45 EDT Micah Lee 🔑 Micah Lee πŸ”‘
      in reply to

      I hoped that, if an evil maid attacker tried tampering with my laptop, I would not only discover the attack, but learn how it works, and possible who was behind it. Unfortunately (fortunately?), I didn't discover any evil maids.

      In conversation Saturday, 28-Apr-2018 16:23:45 EDT from mastodon.social permalink
      1. Micah Lee πŸ”‘ (micahflee@mastodon.social)'s status on Saturday, 28-Apr-2018 16:25:08 EDT Micah Lee 🔑 Micah Lee πŸ”‘
        in reply to

        I installed Debian on the laptop. Before each trip, I removed the hard disk and took checksums of the partitions and the disk header. I also dumped the BIOS firmware. After each trip, I did the same, and compared to see if they matched.

        In conversation Saturday, 28-Apr-2018 16:25:08 EDT from mastodon.social permalink
        1. Micah Lee πŸ”‘ (micahflee@mastodon.social)'s status on Saturday, 28-Apr-2018 16:26:16 EDT Micah Lee 🔑 Micah Lee πŸ”‘
          in reply to

          I learned a lot about hardware hacking and got to use free software BIOS tools like chipsec, EUFITool, and flashrom.

          It was a lot of fun! I go into much more technical detail in the article.

          In conversation Saturday, 28-Apr-2018 16:26:16 EDT from mastodon.social permalink
    2. Bob Jonkman (bobjonkman@gs.jonkman.ca)'s status on Saturday, 28-Apr-2018 19:56:39 EDT Bob Jonkman Bob Jonkman
      in reply to
      Great read! "..even in controlled environments, it’s impossible to give a laptop a clean bill of health with full confidence..." This needs to become common knowledge! https://theintercept.com/2018/04/28/computer-malware-tampering/
      In conversation Saturday, 28-Apr-2018 19:56:39 EDT from web permalink

      Attachments

      1. It’s Impossible to Prove Your Laptop Hasn’t Been Hacked. I Spent Two Years Finding Out.
        from The Intercept
        I spent two years trying to get someone to tamper with my laptop, so I could then detect it. Somewhere along the way, I realized this might never happen.
    3. Tomas SA2TMS (tomas@social.umeahackerspace.se)'s status on Saturday, 28-Apr-2018 21:00:40 EDT Tomas SA2TMS Tomas SA2TMS
      in reply to
      Isn't the solution to this problem to always travel with a firearm?
      In conversation Saturday, 28-Apr-2018 21:00:40 EDT from social.umeahackerspace.se permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.