Security researcher updates OMG Cables to record user keystrokes

3 years ago 311
Lightning cable Credit: Pixabay/CC0 Public Domain

Security researcher Mark Green, (who goes by MG) has revealed to the Vices squad astatine Motherboard that helium and his squad person upgraded their mentation of a hacked Lightning cablegram successful a mode that allows a hacker to grounds keystrokes and past to nonstop the information to a designated site. This would let the instrumentality to beryllium utilized to bargain passwords and different delicate information.

A Lightning cablegram allows for charging a specified arsenic a smartphone utilizing a machine oregon laptop alternatively of a charger. Back successful 2019, MG demoed a cablegram that looked similar a Lightning cablegram but had hacking capabilities built into it. Shortly thereafter, MG reportedly partnered with a cybersecurity vendor called Hak5 and began selling the cables. The thought down the improvement of the cablegram and income of it were meant not conscionable to highlight, but show however specified elemental devices tin beryllium altered successful insignificant ways that let existent hackers to instrumentality vantage of consumers.

More recently, MG spoke with the squad astatine Motherboard and told them that helium has updated the cablegram to let it to some grounds keystrokes and to usage an added WiFi spot to broadcast the information it captures to a designated tract wherever hackers could conceivably survey the information and usage it to their advantage.

MG besides told the squad astatine Motherboard that portion of the crushed helium built the caller cablegram was due to the fact that different experts successful the tract had claimed that it could not beryllium done owed to size and abstraction limitations—there was not capable country wrong the connective lodging connected Type C Lightning cables. MG claims to person proven specified experts incorrect by adding tiny chips to the cables and past demonstrating that they enactment successful a YouTube of his cablegram successful action. He besides told Motherboard that the caller cablegram besides has geofencing features that let for blocking data. Motherboard besides tested the cable, and recovered that it worked arsenic advertised, though admittedly successful a close-proximity environment. MG claimed the cablegram could present information arsenic acold arsenic a mile and that it works arsenic good with smartphones and tablet computers. He noted that helium had besides added an quality to change keyboard mapping and to let the to mimic identity-specific USB devices.



© 2021 Science X Network

Citation: Security researcher updates OMG Cables to grounds idiosyncratic keystrokes (2021, September 6) retrieved 6 September 2021 from https://techxplore.com/news/2021-09-omg-cables-user-keystrokes.html

This papers is taxable to copyright. Apart from immoderate just dealing for the intent of backstage survey oregon research, no portion whitethorn beryllium reproduced without the written permission. The contented is provided for accusation purposes only.

Read Entire Article