I think they meant DDos'ing as in the person gets overwhelmed with notifications and can't actually see the notification about the password change. (i.e. the person's attention is the service)
Like I sort of referenced in my OP, it's part of a group of exploits which still lacks firm industry terminology, but definitely are out there.
The only firm things I can ID so far in this cyber<>physical attack space is:
- cyber<>cyber TTPs definitely apply in a certain way
- Vulns->exploits can start with CIA-like threat modeling (so ID'd starting point)
- the indicators of compromise show up both in the cyber domain, and physical domain, as part of a single attack
- it's a greenfield on defining what an IOC in the physical domain part of this attack is. If you attack plant watering system, is there anything unique on the outcome of plants that indicate it's definitely cyber?
- The physics of the real world play a large role in governing how the physical aspect of the attack occurs(my human ability to read, process notifications at certain scales of notification receipt)
Another example is "AI/ML" can generate financial reports that are believable. If you consider the behavior that a lot of folks trade purely on Twitter news, you can model exploits via thinking how you could compromise the integrity and availability of financial reports that people trade off of (I and A in CIA) by:
- Integrity: if you can get the fake report to get uptake on Twitter on key nodes, "the truth" of a company's finances can be replaced via this false report, as you have a legion of twitter traders following a much smaller legion of key accounts for trading views
- Availability: if you generate enough volume of this fake report vs. the real report, a metric humans use to eval the truth of things is "is it in every newspaper," so you can reduce the availability of the real report as it is drowned out.
And so on... there's definitely real attacks here, but they exist a bit outside of current security models. Very cool area.
"A DoS attack is a denial of service attack where a computer is used to flood a server with TCP and UDP packets. A DDoS attack is where multiple systems target a single system with a DoS attack. The targeted network is then bombarded with packets from multiple locations."
Multiple apps engaged to notify 1 human, multiple systems attack -> single system.... DDoS.
Like I sort of referenced in my OP, it's part of a group of exploits which still lacks firm industry terminology, but definitely are out there.
The only firm things I can ID so far in this cyber<>physical attack space is:
- cyber<>cyber TTPs definitely apply in a certain way
- Vulns->exploits can start with CIA-like threat modeling (so ID'd starting point)
- the indicators of compromise show up both in the cyber domain, and physical domain, as part of a single attack
- it's a greenfield on defining what an IOC in the physical domain part of this attack is. If you attack plant watering system, is there anything unique on the outcome of plants that indicate it's definitely cyber?
- The physics of the real world play a large role in governing how the physical aspect of the attack occurs(my human ability to read, process notifications at certain scales of notification receipt)
Another example is "AI/ML" can generate financial reports that are believable. If you consider the behavior that a lot of folks trade purely on Twitter news, you can model exploits via thinking how you could compromise the integrity and availability of financial reports that people trade off of (I and A in CIA) by:
- Integrity: if you can get the fake report to get uptake on Twitter on key nodes, "the truth" of a company's finances can be replaced via this false report, as you have a legion of twitter traders following a much smaller legion of key accounts for trading views
- Availability: if you generate enough volume of this fake report vs. the real report, a metric humans use to eval the truth of things is "is it in every newspaper," so you can reduce the availability of the real report as it is drowned out.
And so on... there's definitely real attacks here, but they exist a bit outside of current security models. Very cool area.