English

Oops!...I think I scanned a malware

Cryptography and Security 2017-03-23 v1

Abstract

This article presents a proof-of-concept illustrating the feasibility of creating a covert channel between a C\&C server and a malware installed in an organization by exploiting an organization's scanner and using it as a means of interaction. We take advantage of the light sensitivity of a flatbed scanner, using a light source to infiltrate data to an organization. We present an implementation of the method for different purposes (even to trigger a ransomware attack) in various experimental setups using: (1) a laser connected to a stand (2) a laser carried by a drone, and (3) a hijacked smart bulb within the targeted organization from a passing car. In our experiments we were able to infiltrate data using different types of light sources (including infrared light), from a distance of up to 900 meters away from the scanner. We discuss potential counter measures to prevent the attack.

Keywords

Cite

@article{arxiv.1703.07751,
  title  = {Oops!...I think I scanned a malware},
  author = {Ben Nassi and Adi Shamir and Yuval Elovici},
  journal= {arXiv preprint arXiv:1703.07751},
  year   = {2017}
}

Comments

Cyber-Security, Covert Channel, Data Infiltration, Scanner

R2 v1 2026-06-22T18:53:59.280Z