Posts

Showing posts from February, 2016

Who's been typing on my keyboard?

Image
Wired magazine reports on some research carried out by Bastille, where attackers can hijack proprietary wireless keyboard (and mouse) dongle from over 100 yards away.  The attack exploits firmware vulnerabilities in a particular radio communications chip used by wireless input devices.   It seems to be a popular piece of hardware, which is integrated into some computer manufacturers' wireless input devices.
The report only discusses hijacking the target computer, and it is not clear if the technique can also be used to log the keystrokes of the victim's keyboard.  However, it seems straightforward that an attacker could use the capability to inject the commands for the target computer to download and execute a more significant malware payload.  Of course, the computer would have to be unlocked for this to work, which would mean the attacker could see the victim's screen.  Alternatively, an attacker could simply keep trying to send their commands, making sure to backspace an…