Archiv: IT Geräte ohne Netzwerk / Schnittstelle / Internetzugang / (gewollte) Funkverbindung / IT devices without network / interface / internet access / (intended) radio connection – acronym: „air-gapped“


19.04.2026 - 21:45 [ Heinen-ICS.de ]

Cyberangriff über Strom: Wie sensible Daten spurlos ins Stromnetz fließen

(August 22, 2020)

Datendiebe zapfen das Stromnetz des Gebäudes spurlos an, um IT-Daten als Rauschsignale aufzuzeichnen. Die geraubten Signale werden anschließend von den Datendieben mit Analysegeräten sehr professionell wieder in die digitalen Ursprungsdaten zurückgewandelt.

So können am PC eingegebene oder an IT-Peripheriegeräten verarbeitete Daten von Datendieben ausgewertet, mit anderen Datenquellen verknüpft und missbraucht werden. Diese Art des Datendiebstahls ist nicht erkennbar und nicht rekonstruierbar. Der einzige wirksame Schutz gegen solche Cyberangriffe ist das technische Vermeiden von ins Stromnetz abfließenden Daten.

19.04.2026 - 21:09 [ IEEE Transactions on Information Forensics and Security PP(99) / Researchgate.net ]

PowerHammer: Exfiltrating Data From Air-Gapped Computers Through Power Lines

(April 2018)

In this paper we provide an implementation, evaluation, and analysis of PowerHammer, a malware (bridgeware [1]) that uses power lines to exfiltrate data from air-gapped computers. In this case, a malicious code running on a compromised computer can control the power consumption of the system by intentionally regulating the CPU utilization. Data is modulated, encoded, and transmitted on top of the current flow fluctuations, and then it is conducted and propagated through the power lines. This phenomena is known as a ‚conducted emission‘. We present two versions of the attack. Line level powerhammering: In this attack, the attacker taps the in-home power lines1 that are directly attached to the electrical outlet. Phase level power-hammering: In this attack, the attacker taps the power lines at the phase level, in the main electrical service panel. In both versions of the attack, the attacker measures the emission conducted and then decodes the exfiltrated data. We describe the adversarial attack model and present modulations and encoding schemes along with a transmission protocol. We evaluate the covert channel in different scenarios and discuss signal-to-noise (SNR), signal processing, and forms of interference. We also present a set of defensive countermeasures. Our results show that binary data can be covertly exfiltrated from air-gapped computers through the power lines at bit rates of 1000 bit/sec for the line level power-hammering attack and 10 bit/sec for the phase level power-hammering attack.

19.04.2026 - 20:59 [ 311institute.com ]

Hackers found a way to steal data from air gapped networks using powerlines

(8th May 2018)

Hot on the heels of exploits that use fan noise, infra red cameras, heat, LED lights and drones, magnetic fields and smartphones, and a multitude of other hacks to gain access to sensitive air gapped computer systems, the researchers from Israel’s Ben Gurion University have shown once again that air-gapped networks are not safe from a determined and patient attacker.

The researchers have already devised several devious techniques to extract data from isolated or air-gapped computers that store highly sensitive data and now their latest technique, dubbed PowerHammer, exploits current fluctuations flowing through the power lines supplying electricity to air-gapped computers.

The researchers have been able to exfiltrate data at a rate of 1,000 bits per second for lines connected to the target computer and 10 bits per second from the grid.