𝑹𝒆𝒎𝒐𝒕𝒆 𝑬𝒙𝒑𝒍𝒐𝒊𝒕𝒂𝒕𝒊𝒐𝒏 𝒐𝒇 𝑵𝒊𝒔𝒔𝒂𝒏 𝑳𝒆𝒂𝒇: 𝑪𝒐𝒏𝒕𝒓𝒐𝒍𝒍𝒊𝒏𝒈 𝑪𝒓𝒊𝒕𝒊𝒄𝒂𝒍 𝑩𝒐𝒅𝒚 𝑬𝒍𝒆𝒎𝒆𝒏𝒕𝒔 𝒇𝒓𝒐𝒎 𝒕𝒉𝒆 𝑰𝒏𝒕𝒆𝒓𝒏𝒆𝒕 🚗 Electric cars aren’t silent to hackers! At Black Hat Asia 2025 the PCA Cyber Security crew showed how 30 seconds of Bluetooth proximity is enough to jump from the infotainment system to full vehicle control of a 2020 Nissan Leaf. 📶 Attack chain in a nutshell → Bluetooth HFP buffer-overflow (CVE-2025-32059) ➜ root on BlueDragon Evo ➜ Secure-Boot bypass ➜ covert DNS C2 over cellular ➜ CAN-gateway filter evasion ➜ doors, mirrors, wipers … even steering at highway speed! 💥 Why it matters The research proves that “infotainment ≠ harmless” — once inside, attackers can eavesdrop on in-cabin audio, track GPS, and physically move the car from anywhere on the Internet. Nissan issued firmware fixes after coordinated disclosure. Update now! 🛡️ 🔧 Key takeaways for defenders •Harden third-party Bluetooth stacks & eliminate fixed library load addresses. •Physically isolate safety-critical CAN traffic from consumer networks. •Treat every pairing request like a potential drive-by exploit. #AutomotiveSecurity #BluetoothHacking #CarHacking #CANBus #RemoteExploitation #Infosec #EmbeddedSecurity 🎥 Demo video: youtube.com/watch?v=56VreoKt… 📄 Slides (PDF): i.blackhat.com/Asia-25/Asia-… 𝐹𝑒𝑒𝑙 𝑓𝑟𝑒𝑒 𝑡𝑜 𝑠ℎ𝑎𝑟𝑒 𝑡ℎ𝑖𝑠 𝑤𝑖𝑡ℎ 𝑦𝑜𝑢𝑟 𝑐𝑜𝑙𝑙𝑒𝑎𝑔𝑢𝑒𝑠! 𝐴𝑛𝑑 𝑟𝑒𝑚𝑒𝑚𝑏𝑒𝑟… 𝑆𝑡𝑎𝑦 𝑆𝑎𝑓𝑒 𝑎𝑛𝑑 𝐻𝑎𝑐𝑘 𝑅𝑒𝑠𝑝𝑜𝑛𝑠𝑖𝑏𝑙𝑦! 😎🏴‍☠️

🚨 Cyber Attack on Hezbollah through #Pager Devices: How It Has Been Done 🚨 Traditional pager devices receive signals from some main system over radio frequencies. However, security mechanisms like encryption or authentication of signals are not in place with these devices, which makes them very vulnerable to cyber attacks. Signals Interception and Manipulation: An attacker can use a device called Software Defined Radio to intercept the frequency on which the pager operates and send fake signals on the same frequency to manipulate the device's firmware remotely. This can be used to trigger explosive devices, known as IEDs. Explosive Consequences: Pager devices are based on very old technology and don't validate an incoming signal. An attacker can rather easily send a correct signal to use the device as a trigger. With only a signal at the right frequency, the attacker can ignite the explosive device from a distance and also at the most unexpected time for the enemy forces. Today's #cyberwar techniques even transform radio frequency devices into dangerous weapons. Beware of security vulnerabilities! #CyberSecurity #RFHacking #RemoteExploitation #DigitalWarfare #FirmwareExploitation #SignalHijacking