MISSION - community.checkpoint.com€¦ · Mission Impossible * CP * Mission Plan System View...
Transcript of MISSION - community.checkpoint.com€¦ · Mission Impossible * CP * Mission Plan System View...
MISSION
View Targets Location 21“ 84” 12“
cyber satelliteMission View
some text some more text 21“ 84” 12“
top secured locationLocation view
Ground Dok
active
Air Defenseok
active
Space Dok
active
Cyber Dok
active
Mission Impossible CP<R> Mission Plan System**
View targets Location 21“ 84” 12“
Status - OKDefense Systems View
2.G AR BZ ZZ
Level 1 Level 4
Level 2 Level 5
Level 3 Level 6
Target Defenses - Operational
Alert
--------sensitive data---------
WARNING – TOP SECRET
Code view A
21“ 84” 12“
Game ConsoleMission View
Vulnerable Product 21“ 84” 12“
EA GAMESTarget View
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users$5 Billion Revenue
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Attacker sends victim
malicious link
1
21“ 84” 12“
Game ConsoleMission View
Vulnerable Product 21“ 84” 12“
EA GAMESTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Attacker sends victim
malicious link
1 Victim clicks link
to Login Page2 The hijacked EA Games Page
eaplayinvite.ea.com
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users$5 Billion Revenue
21“ 84” 12“
Game ConsoleMission View
Vulnerable Product 21“ 84” 12“
EA GAMESTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Attacker sends victim
malicious link
1 Victim clicks link
to Login Page2
EA Gamesmakes request for SSO token
3
The hijacked EA Games Pageeaplayinvite.ea.com
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users$5 Billion Revenue
21“ 84” 12“
Game ConsoleMission View
Vulnerable Product 21“ 84” 12“
EA GAMESTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Attacker sends victim
malicious link
1 Victim clicks link
to Login Page2
EA Gamesmakes request for SSO token
3
Page redirects to attacker’s
malicious URL.4
The hijacked EA Games Pageeaplayinvite.ea.com
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users$5 Billion Revenue
21“ 84” 12“
Game ConsoleMission View
Vulnerable Product 21“ 84” 12“
EA GAMESTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Attacker sends victim
malicious link
1 Victim clicks link
to Login Page2
EA Gamesmakes request for SSO token
3
Malicious JavaScript
resends request
for token.
5
The hijacked EA Games Pageeaplayinvite.ea.com Page redirects
to attacker’s malicious URL.4
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users$5 Billion Revenue
21“ 84” 12“
Game ConsoleMission View
Vulnerable Product 21“ 84” 12“
EA GAMESTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Attacker sends victim
malicious link
1 Victim clicks link
to Login Page2
EA Gamesmakes request for SSO token
3
Malicious JavaScript
resends request
for token.
5
The hijacked EA Games Pageeaplayinvite.ea.com Page redirects
to attacker’s malicious URL.4
Token is sent to the
attacker6
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users$5 Billion Revenue
21“ 84” 12“
Game ConsoleMission View
21“ 84” 12“
EA GAMESTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
EA GAMES90 Million Users
$5 Billion Revenue
21“ 84” 12“
DSLR CameraMission View
21“ 84” 12“
Cannon DSLR CameraTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
40% Market Share
20 Million sold Yearly
PTP Support
CANON
DSLR
G.28912 21“ 84” 12“
DescriptionTarget Details
21“ 84” 12“
Provisioning SMSMission View
21“ 84” 12“
Android PhoneTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912G.28912 21“ 84” 12“
DescriptionTarget Details
OTA Provisioning
Samsung/Huawei/LG/Sony
50% of all Android
Provisioning SMS
21“ 84” 12“
Provisioning SMSMission View
21“ 84” 12“
Android PhoneTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912G.28912 21“ 84” 12“
DescriptionTarget Details
OTA Provisioning
Samsung/Huawei/LG/Sony
50% of all Android
Provisioning SMS
Alert – Sensitive Data
21“ 84” 12“
Provisioning SMSMission View
21“ 84” 12“
Android PhoneTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912
MMS Message Server
Browser Homepage
Mail Server
Directory Server
Proxy Server
And More…
G.28912 21“ 84” 12“
DescriptionTarget Details
OTA Provisioning
Samsung/Huawei/LG/Sony
50% of all Android
Provisioning SMS
21“ 84” 12“
Provisioning SMSMission View
21“ 84” 12“
Android PhoneTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912G.28912 21“ 84” 12“
DescriptionTarget Details
OTA Provisioning
Samsung/Huawei/LG/Sony
50% of all Android
Provisioning SMS
21“ 84” 12“
Provisioning SMSMission View
21“ 84” 12“
Android PhoneTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912G.28912 21“ 84” 12“
DescriptionTarget Details
OTA Provisioning
Samsung/Huawei/LG/Sony
50% of all Android
Provisioning SMS
Vulnerability Alert !!
21“ 84” 12“
WinRARMission View
21“ 84” 12“
Archive SoftwareTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912
Proprietary Compression
Algorithm
Created in 1991
MOSTLY Unmaintained
Supported by
WinRAR ONLY21“ 84” 12“
DescriptionTarget Details
500 Million Users
19 Years Old
>30 Supported Types
WinRAR
21“ 84” 12“
WinRARMission View
21“ 84” 12“
Archive SoftwareTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
500 Million Users
19 Years Old
>30 Supported Types
WinRAR
21“ 84” 12“
MMC ConsoleMission View
21“ 84” 12“
Management ConsoleTarget View
21“ 84” 12“
DescriptionTarget Details
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
MMC
G.28912
Administrative Tool
Downloadable Addons
Runs on ALL Win>98
21“ 84” 12“
MMC ConsoleMission View
21“ 84” 12“
Management ConsoleTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
MMCAdministrative Tool
Downloadable Addons
Runs on ALL Win>98
21“ 84” 12“
MMC ConsoleMission View
21“ 84” 12“
Management ConsoleTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
MMCAdministrative Tool
Downloadable Addons
Runs on ALL Win>98
21“ 84” 12“
PXEMission View
21“ 84” 12“
Windows ServerTarget View
21“ 84” 12“
DescriptionTarget Details
Active Directory
/ WDSPre-Boot Execution
Dozens of Flavors
Bundled with ALL
Windows Server
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
PXE
G.28912
21“ 84” 12“
PXEMission View
21“ 84” 12“
Windows ServerTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
Pre-Boot Execution
Dozens of Flavors
Bundled with ALL
Windows Server
PXEActive Directory
/ WDS
21“ 84” 12“
PXEMission View
21“ 84” 12“
Windows ServerTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
Pre-Boot Execution
Dozens of Flavors
Bundled with ALL
Windows Server
PXEActive Directory
/ WDS
21“ 84” 12“
PXEMission View
21“ 84” 12“
Windows ServerTarget View
View Targets Location
Mission Impossible CP<R> Mission Plan System**
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
Pre-Boot Execution
Dozens of Flavors
Bundled with ALL
Windows Server
PXEActive Directory
/ WDS
21“ 84” 12“
SQLiteMission View
21“ 84” 12“
Embedded DatabaseTarget View
21“ 84” 12“
DescriptionTarget Details
Light Database
“Embedded DB”
1-e12 Installs
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
SQLite
G.28912
21“ 84” 12“
SQLiteMission View
21“ 84” 12“
Embedded DatabaseTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
Light Database
“Embedded DB”
1-e12 Installs
SQLite
21“ 84” 12“
SQLiteMission View
21“ 84” 12“
Embedded DatabaseTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
Light Database
“Embedded DB”
1-e12 Installs
SQLite
OOOPS
…
21“ 84” 12“
Cloud InfrastructureMission View
21“ 84” 12“
Microsoft AzureTarget View
21“ 84” 12“
DescriptionTarget Details
Workload
Workload
Workload
Workload
Workload
Workload
MS Cloud Solution
Top 3 Cloud I/S
Millions of Users
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
AZURE
G.28912
21“ 84” 12“
Cloud InfrastructureMission View
21“ 84” 12“
Microsoft AzureTarget View
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
MS Cloud Solution
Top 3 Cloud I/S
Millions of Users
AZURE
21“ 84” 12“
Cloud InfrastructureMission View
21“ 84” 12“
Microsoft AzureTarget View
Workload Workload
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
MS Cloud Solution
Top 3 Cloud I/S
Millions of Users
AZURE
21“ 84” 12“
Cloud InfrastructureMission View
21“ 84” 12“
Microsoft AzureTarget View
Workload
Workload
Workload
Workload
Workload
Workload
Mission Impossible CP<R> Mission Plan System**
View Targets Location
Vulnerable Product
G.28912 21“ 84” 12“
DescriptionTarget Details
MS Cloud Solution
Top 3 Cloud I/S
Millions of Users
AZURE
THE END_CPRESEARCH_
RESEARCH.CHECKPOINT.COM