Please consider donating to Behind the Black, by giving either a one-time contribution or a regular subscription, as outlined in the tip jar to the right. Your support will allow me to continue covering science and culture as I have for the past twenty years, independent and free from any outside influence.
Your modern wireless computer is not safe: Hackers have devised an attack that is capable of not only recording the keystrokes and mouse actions of wireless devices, it can also take over the computer, and it can do it from hundreds of feet away.
On Tuesday Bastille’s research team revealed a new set of wireless keyboard attacks they’re calling Keysniffer. The technique, which they’re planning to detail at the Defcon hacker conference in two weeks, allows any hacker with a $12 radio device to intercept the connection between any of eight wireless keyboards and a computer from 250 feet away. What’s more, it gives the hacker the ability to both type keystrokes on the victim machine and silently record the target’s typing.
The keyboards’ vulnerability, according to Bastille’s chief research officer Ivan O’Sullivan, comes from the fact that they all transmit keystrokes entirely without encryption. The manufacturers’ only plan against attackers spoofing or eavesdropping on their devices’ communications is to depend on the obscurity of the radio protocols used. “We were stunned,” says O’Sullivan. “We had no expectation that in 2016 these companies would be selling keyboards with no encryption.”
In other words, if you use a wireless keyboard or mouse, your system is very vulnerable and exposed.
I find this story amusing in a sense, since my friends constantly make fun of me for not upgrading to these devises. I however see no reason to spend money on a new keyboard when the old wired one I have works fine. Now I have good reason, when I do upgrade, to avoid the wireless route.