Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore a comprehensive security analysis of Residential Gateways (modems) and ISP infrastructure in this 38-minute Black Hat conference talk. Learn how researchers reviewed popular broadband network standards (DSL, DOCSIS, xPON), remote management protocols (TR-069/CWMP), and reverse engineered 14 different residential gateways from 11 ISPs across 8 countries. Discover alarming findings about the lack of modern protection mechanisms like ASLR, TrustZone, and secure boot in these devices, making them vulnerable to low-complexity attacks including weak credentials, buffer overflows, and command injections. The presentation reveals how these vulnerabilities enabled researchers to demonstrate a full compromise of an estimated four million residential gateways at a major ISP in a top-20 country. Additionally, examine the development of specialized tools for testing proprietary xPON protocols and device drivers, including a vulnerability that allows bypassing a device's WAN firewall rule. Understand the broader implications for global network security, supply chain vulnerabilities, and the fragile security paradigm in both residential gateway hardware and ISP infrastructure.
