BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: A Pain in the NAS: Exploiting Cloud Connectivity to 
 PWN your\n   NAS\n   When: Friday\, Aug 11\, 12:30 - 13:15 PDT\n   Where: 
 Caesars Forum - Forum - 105\,135\,136 - Track 1 - [1]Map\n   Speakers:Noam
  Moshe\,Sharon Brizinov\n\n   SpeakerBio:Noam Moshe \, Vulnerability Resea
 rcher at Claroty Team82\n   Noam Moshe is a vulnerability researcher at Cl
 aroty Team82. Noam\n   specializes in vulnerability research\, web applica
 tions pentesting\,\n   malware analysis\, network forensics and ICS/SCADA 
 security. In\n   addition\, Noam presented in well-known Hacking conferenc
 es like\n   Blackhat Europe\, as well as won Master of Pwn at Pwn2Own Miam
 i 2023.\n\n   SpeakerBio:Sharon Brizinov \, Director of Security Research 
 at Claroty\n   Team82\n   Sharon Brizinov leads the Vulnerability Research
  at Team82\, The\n   Claroty Research. He specializes in OT/IoT vulnerabil
 ity research\, has\n   participated in multiple Pwn2Own competitions\, won
  Pwn2Own Miami 2023\,\n   and holds a DEFCON black badge.\n\n   Descriptio
 n:\n   Have you ever wondered how you can access your family pictures on y
 our\n   home network-attached storage (NAS) device remotely from your mobi
 le?\n   Do you know how this magic works? At Pwn2Own Toronto 2022\, we cha
 ined\n   multiple bugs to exploit both Synology and Western Digital NAS de
 vices\n   by abusing vulnerabilities in the device\, cloud and the mutual 
 trust\n   between them.\n\n   In our research\, we reviewed the pairing me
 chanism of NAS devices with\n   the WD and Synology cloud platforms. To ou
 r surprise we discovered\n   that devices authenticate to the cloud using 
 a hardware identifier\n   which is later used by users to remotely access 
 their devices. Using\n   this\, we were able to impersonate any given NAS 
 device and perform\n   phishing attacks that yielded us admin rights on an
 y targeted WD or\n   Synology device.\n\n   In this talk\, we will explain
  the pairing process of WD and Synology\n   NAS. We will elaborate on the 
 overall architecture of their cloud\n   offering and focus on the vulnerab
 ilities we found including ways to\n   enumerate and impersonate all edge 
 devices using certificate\n   transparency log (CTL)\, and steal cloud pro
 xy auth tokens. This\n   enabled us to download every file saved on the NA
 S devices\, alter or\n   encrypt them\, and bypass NAT/Firewall protection
  to achieve full\n   remote code execution on all cloud-connected NAS (and
  to gain $$$ from\n   Pwn2Own).\n\n   '\n\n   1. #CaesarsForumBR\n\n\n
DTEND:20230811T201500Z
DTSTART:20230811T193000Z
LOCATION:DC - Caesars Forum - Forum - 105\,135\,136 - Track 1
SUMMARY:A Pain in the NAS: Exploiting Cloud Connectivity to PWN your NAS
END:VEVENT
END:VCALENDAR