SecurityWeek | Cyber Insights 2025: OT Security
SecurityWeek | Check out this piece from SecurityWeek capturing thoughts from John Sheehy, IOActive SVP Research & Strategy, on trends for 2025 in relation to operational technology (OT) cybersecurity. “”During 2024, Russia-affiliated threat actors executed a campaign of physical sabotage throughout the European Union (EU) targeting critical infrastructure, the defense industry, and other elements of EU society,” notes John Sheehy, SVP Research & Strategy, IOActive. “I assess it is likely that Russian-affiliated threat actors will conduct intensified reconnaissance, establishment of persistence, and the launch of exploratory cyberattacks on liquid natural gas…
Tom’s Hardware | Raspberry Pi’s RP2350 Hacking Challenge results announced — four winners are each awarded the full $20K prize
Tom’s Hardware | Check out this article from Tom’s Hardware highlighting IOActive’s recent win for ‘Extracting antifuse secrets from RP2350 by FIB/PVC’ during the RP2350 Hacking Challenge hosted by Raspberry Pi. “Data bits stored in the RP2350’s OPT memories, based on antifuses, were extracted using a well-known semiconductor failure analysis technique leveraging passive voltage contrast (PVC) with a focused ion beam (FIB). IOActive’s five-strong team reckons their unique attack vector is potent enough to apply to other systems using antifuse memory for confidentiality. Organizations…
Forbes Exclusive | Raspberry Pi Confidential Data Hack Attack—What You Need To Know
Forbes | IOActive researchers recently applied a new technique during the RP2350 Hacking Challenge hosted by Raspberry Pi. This Forbes article highlights our team’s research, which secured a win during the challenge for “Extracting antifuse secrets from RP2350 by FIB/PVC.” … “The fully-invasive antifuse memory reading technique we demonstrated with the example RP2350 can very likely be utilized against other types of antifuse memories,” IOActive’s senior vice president of research and strategy, John Sheehy, told me, “which are frequently used to store small amounts…
Popular Science | Researchers hack digital license plates, demonstrating way to evade tolls and cops
Popular Science | Josep Pi Rodriguez, IOActive Principal Consultant, recently featured his discovery of a technique to ‘jailbreak’ digital license plates in this piece from Popular Science. “… Cybersecurity researchers at from IOActive have demonstrated how a similar type of sleight of hand can potentially be performed in the real-world by hacking a popular brand of new digital driver’s license plates. By using a “fault injection” hardware attack, the researches have shown how a hacker could, hypothetically at least, essentially
WIRED | Hackers Can Jailbreak Digital License Plates to Make Others Pay Their Tolls and Tickets
WIRED | IOActive’s Josep Pi Rodriguez, Principal Security Consultant, was recently featured in a Wired article, ‘Hackers Can Jailbreak Digital License Plates to Make Others Pay Their Tolls and Tickets,’ where he discussed a technique that he discovered to “”jailbreak” digital license plates sold by Reviver, the leading vendor of those plates in the US with 65,000 plates already sold.” “That susceptibility to jailbreaking, Rodriguez points out, could let drivers with the license plates evade any system that depends on license plate numbers for enforcement…
IOActive Becomes a Founding Provider for New Framework from Open Compute Project Foundation to Improve Data Center and Cloud Security Posture