CHCon SHAQUIN & BEN – SUPER SELF-SERVICE: HACKING KIOSKS USING BARCODES, https://2019.chcon.nz/talks/shaquin-ben/
Self-service kiosks with barcode scanners are everywhere – at supermarkets, visitor reception areas, airports, libraries, etc. Using the barcode scanner alone, it’s often possible to get an admin shell on a kiosk. We’ll explain the different types/modes of barcode scanners, show you how to reconfigure them, and how to exploit their features to escape kiosk software. We may even drop an app to help you in your adventures :)
- So ... barcode scanners interpret the barcodes, and return representations back to the host computer.
- There are config barcodes that reconfigure the scanners directly ...
- Scanners can become “HID keyboards” ... and barcodes can encode keyboard keys, just like a rubber ducky
- https://github.com/LateralSecurity/BarSploit will build a PDF for your attack chain; display it on a kindle perhaps?
- Mitigations – don't put kiosks on the core network, perhaps run a 'real' lockdown machine as well?