SUMMARY: Even air-gapped systems are not always safe – the LANtenna attack shows how hackers can exfiltrate data using Ethernet cables as improvised antennas. This article explains how the technique works, why air gaps still matter and how encrypted containers such as BestCrypt and data-in-use protection tools can block attackers even if malware is inside your network. You will also get practical steps to stay protected against physical and evolving AI-powered threats.
Stay ahead of the latest type of attack with encrypted containers
An Israeli researcher has discovered a new type of electromagnetic attack that extracts data from systems by using Ethernet cables as antennas. Nicknamed the LANtenna attack, this simple technique specifically targets computers that are not connected to any external networks including the global net (known as air-gapped systems).
How Does the Attack Work?
Before data can be extracted from air-gapped systems, attackers will use a variety of tools to collect as much information as they can about their target. The next step is to install malware on the target’s network by using different types of infection vectors, such as contaminated USB drives, supply chain attacks, or stolen credentials. The research paper by Mordechai Guri notes that infection can still occur on highly secure networks.
Once the first phase is complete, attackers will try to extract sensitive data that has been gathered by the previously installed malware. By using Ethernet cables as antennas, data can be transmitted from targeted computers over radio waves. Attackers can then intercept these signals with a nearby radio receiver.
Should You Still Use Air-Gapped Networks?
Although air-gapped networks are regarded as one of the highest forms of network security, the LANtenna attack now enables hackers to breach even this setup.
That’s not to say, however, that Wi-Fi or Ethernet connections should be seen as preferable to air-gapped systems. On the contrary, using regular internet connections will make you an even easier target for hackers. Wi-Fi leaves users vulnerable to various kinds of attacks, while Ethernet connections increase your chances of being infected with Trojan horse malware that gathers and shares your private data.
In security, we must understand that nothing is completely bulletproof. Frankly, everything is vulnerable to some degree. While air-gapped networks may have some vulnerabilities, they still offer significantly reduced risk in comparison with
Wi-Fi or Ethernet connections.
Protect Your Data with BestCrypt
One way of protecting yourself from cyber threats like the LANtenna attack is to store your sensitive data in encrypted containers. By using BestCrypt Container Encryption to protect files and folders in closed containers, attackers are blocked from extracting your data.
In addition to protecting data with BestCrypt Container Encryption, you can also safeguard open containers and data that’s stored on your hard drive by using BestCrypt Data Shelter. In this case, data extraction will be rejected and attackers will not be able to access your files. Watch our simple 3-step video to enable BestCrypt Data Shelter and start protecting your data in use.
With cyberattacks becoming more frequent and sophisticated, it’s essential that you are equipped with the right data protection software. With BestCrypt, users are also provided with extra protection against brute-force attacks and keylogger spyware. Find out more about BestCrypt Container Encryption and start your free trial today.
And don’t forget to keep your data-in-use protected by downloading BestCrypt Data Shelter for free!
Beyond Physical Attacks: Protect Yourself from AI-Powered Threats
Preventing data exfiltration attacks like LANTENNA is essential for maintaining strong cybersecurity. However, these are just one type of modern threat. Today, AI is also being used to craft highly personalized phishing messages and scams that can bypass traditional defenses. To help you stay ahead, check out our guide on how to protect yourself from AI scams. It includes 10 free and paid tools to enhance your protection against phishing, identity theft, and other AI-powered threats.
Frequently Asked Questions (FAQs)
The LANtenna attack is an electromagnetic data exfiltration technique that turns Ethernet cables into antennas, allowing malware to send information from air-gapped systems over radio signals. It is significant because it shows that even highly isolated networks can still leak data when compromised from the inside.
Air-gapped systems remain one of the strongest defenses against remote attacks, but LANtenna proves they are not fully immune. While the risk is low, organizations should apply layered protections and secure sensitive data at rest and in use to minimize what an attacker can extract.
Encrypted containers protect files with strong encryption so the contents remain unreadable without the correct key. Even if attackers manage to generate signals or capture fragments, they cannot interpret the data. BestCrypt Container Encryption provides isolated, strongly protected storage that limits unauthorized access.
Data at rest refers to stored information, while data in use is actively opened or processed. Encrypting data at rest protects stored files, but additional controls are needed when files are in use. Tools such as BestCrypt Data Shelter restrict which applications can access sensitive data and help block malware from reading it.
Software can significantly reduce the impact of LANtenna-style attacks, but it cannot stop every electromagnetic or physical side-channel threat. The most effective approach combines strong encryption, data-in-use protection, strict access controls and monitoring to limit what malware can access, even inside an air-gapped system.