Jesse D’Aguanno, a consultant with Praetorian Global, has developed a hacking program that exploits the trust relationship between a Blackberry and a companyÃ¢â‚¬â„¢s internal server to hijack a connection to the network. Because the data tunnel between the Blackberry and the server is encrypted, intrusion detection systems at the perimeter of the network won’t detect the attack.
The technique is successful, D’Aguanno says, because most companies aren’t equipped to detect someone trying to deliver an exploit from inside the network. It also works because few companies view the Blackberry as a plausible attack vector.
The attack is made easier via a new tool from D’Aguanno called BBProxy.Ã‚Â On the plus side, it requires physical access to the target Blackberry or an unwise user.Ã‚Â In almost all security problems, physical access by the attacker means you lose anyway, so that’s not too bad.Ã‚Â But given the number of unwise users, this looks like a case for tons of new internal network attacks.
The program, called BBProxy, has to be placed on a Blackberry either physically or as a Trojan horse delivered by e-mail. Once installed, it causes the Blackberry to call back to the attacker’s system in the background, opening a communications channel between the attacker and the company’s internal network.
From there, safely behind the organization firewall, the intruder can scan for hosts with security vulnerabilities.
D’Aguanno said he’ll release BBProxy for download in a week or so.
[tags]Blackberry, Network security[/tags]