08-15, 19:00–19:50 (US/Eastern), Tobin
In emergencies or off-grid scenarios, Meshtastic shines, but it can crumple when adversaries go off-script. Meshtastic is an open-source platform that allows for long-range, off-grid communication through LoRa-based mesh networks. While offering powerful tools for decentralized communication, particularly in remote areas or during emergencies, Meshtastic also introduces a set of security risks that could be exploited by adversaries. This talk explores the potential vulnerabilities within Meshtastic networks, focusing on attack vectors such as physical attacks, privacy leaks, key management, and jamming. Additionally, the effectiveness of the platform’s encryption and authentication mechanisms will be analyzed, offering insights into how these systems can be compromised and how users can fend off attackers.
This session will include a technical breakdown of known vulnerabilities and present both simulated and real-world examples of attacks on Meshtastic networks. Attendees will gain a deeper understanding of how to defend against these threats, hardening their mesh networks against malicious actors. Whether you’re a hobbyist experimenting with off-grid communications or a security professional assessing decentralized systems, this presentation will equip you with the tools and knowledge to secure your Meshtastic devices.
David “Heal” Schwartzberg is a cybersecurity professional, known for his expertise in infosec, ethical hacking, and data protection. With more than 29 years of experience in the cybersecurity field, David has worked with leading organizations to develop strategies for safeguarding sensitive data and defending against evolving cyber threats. He is the founder of Hak4Kidz, a non-profit organization focused on teaching cybersecurity skills to youths.