38C3

Nicolas Oberli

Nicolas is a hardware hacker based in Switzerland. His research focuses on embedded devices and communication protocols. In his spare time, he now spends more time designing CTF challenges than solving them. He is also one of the main developers of the Hydrabus hardware hacking tool and part of the BlackAlps security conference organization committee.


Session

12-27
17:15
40min
From fault injection to RCE: Analyzing a Bluetooth tracker
Nicolas Oberli

The Chipolo ONE is a Bluetooth tracker built around the Dialog (now Renesas)
DA14580 chip. This talk will present the research made on this device, from
extracting the firmware from the locked down chip using fault injection up to
getting remote code execution over Bluetooth.
The talk will also present the disclosure process and how the vendor reacted to
an unpatchable vulnerability on their product.

Security
Saal ZIGZAG