Apple Keyboards Can Be Hacked, Proof-of-concept Already Showcased
When you think of computer security, the usual threats normally come to mind, things like viruses, Trojans, spyware, spam, malware and so on. The topic rarely focuses on a computer’s keyboard, unless of course you have keyloggers in mind. This year, at the Defcon conference in Las Vegas, a security researcher from the Georgia Institute of Technology known to us only by his nickname, K. Chen, showed the world that the Apple Keyboard poses a security threat to the Mac user.
The security researcher showcased a means of infecting the Apple Keyboard’s firmware, thus granting the attacker complete control over the targeted machine – that would be your beloved Mac. But wait, it gets better. Since the code is nestled comfortably in the keyboard, formatting the Mac’s hard drive will not get solve the problem. The only viable solution, explained K. Chen, is to throw away the infected keyboard and get another.
“Such code could also completely bypass the remote attestation of a Trusted Platform Module, if one were present in the computer. As far as everybody is concerned, our [malicious keyboard] code is simply the user typing commands at the keyboard,” explained K. Chen.
A detailed technical paper describing how an Apple Keyboard can be compromised is available here (PDF warning).
A video demonstrating the attack on an Apple Keyboard is available on YouTube here.
It’s not just the hardware that raises security questions, it is the Mac itself. For the time being attacks on Macs are very rare and security is something that Mac users take quite lightly, According to Charlie Miller, the security expert that recently uncovered the critical iPhone SMS vulnerability, and Dai Zovi, security researcher that co-authored “The Mac Hacker’s Security Handbook” alongside Miller, this is all due to change in the future. As Apple gains more market share, the Mac is will become a tempting target to hackers. And once hackers take Macs seriously and put in the resources to target them, you can expect Macs to become as vulnerable as Windows machines are now.
Tags: Apple, Keyboard, Hacker, Defcon, Mac
The security researcher showcased a means of infecting the Apple Keyboard’s firmware, thus granting the attacker complete control over the targeted machine – that would be your beloved Mac. But wait, it gets better. Since the code is nestled comfortably in the keyboard, formatting the Mac’s hard drive will not get solve the problem. The only viable solution, explained K. Chen, is to throw away the infected keyboard and get another.
Advertising
“Such code could also completely bypass the remote attestation of a Trusted Platform Module, if one were present in the computer. As far as everybody is concerned, our [malicious keyboard] code is simply the user typing commands at the keyboard,” explained K. Chen.
A detailed technical paper describing how an Apple Keyboard can be compromised is available here (PDF warning).
A video demonstrating the attack on an Apple Keyboard is available on YouTube here.
It’s not just the hardware that raises security questions, it is the Mac itself. For the time being attacks on Macs are very rare and security is something that Mac users take quite lightly, According to Charlie Miller, the security expert that recently uncovered the critical iPhone SMS vulnerability, and Dai Zovi, security researcher that co-authored “The Mac Hacker’s Security Handbook” alongside Miller, this is all due to change in the future. As Apple gains more market share, the Mac is will become a tempting target to hackers. And once hackers take Macs seriously and put in the resources to target them, you can expect Macs to become as vulnerable as Windows machines are now.
Tags: Apple, Keyboard, Hacker, Defcon, Mac
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 10 Feb 2012
With the release of Wolfram|Alpha Pro, the team behind the popular computational knowledge engine took a very big step forward
By George Norman on 10 Feb 2012
Microsoft has just announced that this February, as part of the Patch Tuesday program, it will roll out a grand total of 9 security bulletins to all customers all over the world.Related News
By George Norman on 07 Sep 2011
Intego, company that specializes in providing security solutions for Mac, announced yesterday that it is running a back to school promo and that as part of the aforementioned promo, it is offering a 20%
By George Norman on 07 Dec 2011
Exciting times for Mac users who were waiting to take advantage of the functionality CCleaner has to offer. The team at Piriform, privately owned UK software developer dedicated to creating top quality applications for Windows and Mac, announced that 
By George Norman on 24 Oct 2011
BitTorrent, the company that develops and maintains the BitTorrent protocol as well as the BitTorrent and the uTorrent software applications, recently announced that its uTorrent and BitTorrent Mainline applications for Mac have been released to the Mac community as stable versions
By George Norman on 14 Oct 2011
Intego, company that specializes in providing security solutions for Mac, announced earlier this week that its malware scanner for iOS, the VirusBarrier iOS app, is on sale to celebrate theAdvertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Apple Keyboards Can Be Hacked, Proof-of-concept Already Showcased
HTML Linking Code
HTML Linking Code