> All the frameworks used USB drives as the physical transmission medium [...] We have not found any case of actual or suspected use of covert physical transmission mediums, such as acoustic or electromagnetic signals
What about the red channel transmission in VGA cables from the Snowden leaks, if memory serves?
I'm happy to see this claim because I usually skip these articles about leaking this or that in a lab environment via EM (they seem too esoteric to me but the media seems to love it because it really plays to the imagination), but at the same time it worries me that I can think of a counter example off the top of my head. Maybe it doesn't qualify as a "framework" or wasn't bidirectional, even if it was used to leak confidential data.
The paper is specific to delivery of malware to airgapped networks. The NSA's RAGEMASTER which you are thinking of, and the whole VAGRANT family, is only a surveillance system - it does not allow for the insertion of any type of software.
There is also a useful differentiation in that NSA TAO-type techniques generally require that physical access be established (either to the environment or to equipment being taken into the environment), so in some sense they do not "jump" the air-gap... it's assumed that the method of insertion has already solved that problem. This paper discusses tools that are intended to make their way from a public network into an air-gapped one. In other words, there is a difference between tools for merely exfiltrating from an airgapped environment (having gained access some other way) and tools to actually gain access to the environment by software means. Physically infiltrating, tampering, etc to get an implant into an airgapped environment is old hat in the intelligence world, and so there are many defenses against it, but a "malware" approach to getting a software implant in is a pretty new thing with fewer defenses. Although as this paper shows, epoxy in the USB ports has proven surprisingly effective.
What about the red channel transmission in VGA cables from the Snowden leaks, if memory serves?
I'm happy to see this claim because I usually skip these articles about leaking this or that in a lab environment via EM (they seem too esoteric to me but the media seems to love it because it really plays to the imagination), but at the same time it worries me that I can think of a counter example off the top of my head. Maybe it doesn't qualify as a "framework" or wasn't bidirectional, even if it was used to leak confidential data.