secIT by heise 2025

Konstantin Bücheler

Konstantin Bücheler ist Security Researcher und Consultant bei der IT-Sicherheitsfirma Neodyme AG. Sein Schwerpunkt liegt in der Durchführung von Application Audits und Red Team Engagements.


Firma

Neodyme AG

Position

Security Researcher


Beiträge

19.03
11:00
60min
From Home Office to Corporate Breach: The IoT Security Risk
Kolja Graßmann, Konstantin Bücheler

As the boundaries between home and work environments blur, IoT devices in home offices have emerged as a relevant target for cyber attackers. This talk delves into the security risks of common home office devices —such as routers and printers— illustrated through a successful Small Office/Home Office attack chain that we used at Pwn2Own Ireland 2024. We explore how these seemingly innocuous devices can be exploited, demonstrating how attackers gain control and leverage them to infiltrate corporate networks. Attendees will gain insights into the evolving threat landscape and understand the surprising simplicity of such attacks. The session concludes with strategies for safeguarding remote work environments against these growing IoT security threats.

Redaktioneller Vortrag
Networking-Lounge
19.03
16:00
60min
From Home Office to Corporate Breach: The IoT Security Risk
Kolja Graßmann, Konstantin Bücheler

As the boundaries between home and work environments blur, IoT devices in home offices have emerged as a relevant target for cyber attackers. This talk delves into the security risks of common home office devices —such as routers and printers— illustrated through a successful Small Office/Home Office attack chain that we used at Pwn2Own Ireland 2024. We explore how these seemingly innocuous devices can be exploited, demonstrating how attackers gain control and leverage them to infiltrate corporate networks. Attendees will gain insights into the evolving threat landscape and understand the surprising simplicity of such attacks. The session concludes with strategies for safeguarding remote work environments against these growing IoT security threats.

Redaktioneller Vortrag
Networking-Lounge