@inproceedings{78819d2748d7499c9224735ea8af0ad1,
title = "Lantenna: Exfiltrating data from air-gapped networks via ethernet cables emission",
abstract = "In this paper we present LANTENNA - a new type of an electromagnetic attack allowing adversaries to leak sensitive data from isolated, air-gapped networks. Malicious code in air-gapped computers gathers sensitive data and then encodes it over radio waves emanated from Ethernet cables. A nearby receiving device can intercept the signals wirelessly, decodes the data and sends it to the attacker. We discuss the exiltration techniques, examine the covert channel characteristics, and provide implementation details. Notably, the malicious code can run in an ordinary user mode process, and can successfully operates from within a virtual machine. We evaluate the covert channel in different scenarios and present a set of of countermeasures. Our experiments show that with the LANTENNA attack, data can be exfiltrated from air-gapped computers to a distance of several meters away.",
keywords = "Air-gap, Covert channels, Data leakage, Electromagnetic, Ethernet, Exfiltration, LAN",
author = "Mordechai Guri",
note = "Publisher Copyright: {\textcopyright} 2021 IEEE.; 45th IEEE Annual Computers, Software, and Applications Conference, COMPSAC 2021 ; Conference date: 12-07-2021 Through 16-07-2021",
year = "2021",
month = jul,
day = "1",
doi = "10.1109/COMPSAC51774.2021.00106",
language = "English",
series = "Proceedings - 2021 IEEE 45th Annual Computers, Software, and Applications Conference, COMPSAC 2021",
publisher = "Institute of Electrical and Electronics Engineers",
pages = "745--754",
editor = "Chan, {W. K.} and Bill Claycomb and Hiroki Takakura and Ji-Jiang Yang and Yuuichi Teranishi and Dave Towey and Sergio Segura and Hossain Shahriar and Sorel Reisman and Ahamed, {Sheikh Iqbal}",
booktitle = "Proceedings - 2021 IEEE 45th Annual Computers, Software, and Applications Conference, COMPSAC 2021",
address = "United States",
}