IoT Hackathon: SPIRITCYBER 2024
IoT Hackathon: SPIRITCYBER 2024
15 October 2024 (Tuesday)
Time: 9.00am to 5.30pm (GMT +8)
Project Omega is a national threat analytics initiative which collects and studies novel IoT exploitation attacks to generate awareness of IoT threats relevant to the government’s Smart Nation initiatives. The conduct of annual IoT Hackathon - “SPIRITCYBER” is part of the project deliverables to meet this objective. SPIRITCYBER is a 3-series hackathon which started from 2022 and aims to discover new IoT attack techniques through crowdsourced wisdom from the larger cybersecurity community. The hosting of the annual SPIRITCYBER hackathon event during SICW also serves to foster collaboration with industry and academia. The theme for this year SPIRITCYBER-24 is “Cybersecure Urban Living”.
Programme
| 9.00am to 9.30am | Opening Address by Dr Matthias Fischer, University Hamburg |
| 9.30am to 5.00pm | Hackathon Conduct |
| 10.00am to 10.30am | SOHO Demo This demo showcases how an enterprise firewall can be compromised and expose internal devices - such as printers, cameras, smart speakers, and network storage devices. Subsequently, an attacker may conduct lateral movement into the network to access confidential data and record conversations. |
| 11.00am to 11.30am | IoT Clock Glitching Clock glitching is a technique to trigger vulnerabilities at the hardware level by manipulating the clock signal of a device. This can cause unintended behaviours, such as corrupting program flow and bypassing password checks, potentially uncovering security weaknesses in everyday IoT devices. |
| 10.00am to 4.00pm | IoT Hardware Hacking We will share techniques on how to identify electronic components and access hardware debugging ports or communication protocols on an embedded system. Participants can interact with the hardware to explore the system and extract the firmware for analysis. |
| 10.00am to 4.00pm | Autonomous Mobile Robot (AMR) Demo We will be demonstrating and introducing AMR features, use cases and answering AMR product related queries. |
| 2.00pm to 2.30pm | SOHO Demo This demo showcases how an enterprise firewall can be compromised and expose internal devices - such as printers, cameras, smart speakers, and network storage devices. Subsequently, an attacker may conduct lateral movement into the network to access confidential data and record conversations. |
| 3.00pm to 3.30pm | IoT Clock Glitching Clock glitching is a technique to trigger vulnerabilities at the hardware level by manipulating the clock signal of a device. This can cause unintended behaviours, such as corrupting program flow and bypassing password checks, potentially uncovering security weaknesses in everyday IoT devices. |
| 5.00pm | End of Day #1 Hackathon |
Information is accurate at time of publication