A Framework for Human Error, Weaknesses, Threats &amp; Mitigation Measures in an Airgapped Network

Shaikh, Rizwan Ahmed; Khan, Muhammad Sohaib; Rashid, Imran; Abbas, Haidar; Naeem, Farrukh; Siddiqi, Muhammad Haroon

doi:10.1109/icodt255437.2022.9787441

2022 2nd International Conference on Digital Futures and Transformative Technologies (ICoDT2) 2022

DOI: 10.1109/icodt255437.2022.9787441

|View full text |Cite

A Framework for Human Error, Weaknesses, Threats & Mitigation Measures in an Airgapped Network

Rizwan Ahmed Shaikh

Muhammad Sohaib Khan

Imran Rashid

et al.

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2023

Publication Types

Select...

Other1

Relationship

Self Cite0

Independent1

Authors

Journals

Cited by 1 publication

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Forensic Implication of a Cyber-Enabled Fraud Taking Advantage of an Offline Adversary-in-the-Middle (AiTM) Attack

Lawal,

Gresty,

Gan

et al. 2023

2023 46th MIPRO ICT and Electronics Convention (MIPRO)

View full text Add to dashboard Cite

Many computer users utilise the High-Definition Multimedia Interface (HDMI) for connecting external displays as this interface is common on modern computers. This work investigates the feasibility of performing an offline adversary-in-the-middle attack with a portable programmable device such as the Screen Crab which leverages the HDMI interface to covertly capture information being sent to the external display. This work also addresses the possibility of such attacks being carried out as the reconnaissance phase of a wider attack or being carried out as a standalone attack for data exfiltration, data theft, or espionage. Among the operational observations of the Screen Crab, while it was exfiltrating data, include its property of being storage and process efficient. In addition, there were no indicators on the external display (e.g., quality drop, lag/latency) to suggest to the target user that any form of tampering had been done to their machine. This paper also shows how it might be difficult for forensic analysts to detect the use of this device which poses a risk of the target user (victim) being falsely accused or wrongly prosecuted for divulging sensitive or classified information in this kind of situation.

show abstract

Forensic Implication of a Cyber-Enabled Fraud Taking Advantage of an Offline Adversary-in-the-Middle (AiTM) Attack

Lawal,

Gresty,

Gan

et al. 2023

2023 46th MIPRO ICT and Electronics Convention (MIPRO)

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

A Framework for Human Error, Weaknesses, Threats & Mitigation Measures in an Airgapped Network

Cited by 1 publication

References 12 publications

Forensic Implication of a Cyber-Enabled Fraud Taking Advantage of an Offline Adversary-in-the-Middle (AiTM) Attack

Forensic Implication of a Cyber-Enabled Fraud Taking Advantage of an Offline Adversary-in-the-Middle (AiTM) Attack

Contact Info

Product

Resources

About