News Karnataka
Friday, March 31 2023
Science & Technology

Malware can turn your laptop into an eavesdropping device

Photo Credit :

New York: Malware that can covertly transform headphones into a pair of microphones can turn your personal computer into a perpetual eavesdropping device, warn researcher.

Using the malware SPEAKE(a)R, the researchers at Ben-Gurion University of the Negev (BGU) in Israel demonstrated how most PCs and laptops today are susceptible to this type of attack.

“The fact that headphones, earphones and speakers are physically built like microphones and that an audio port’s role in the PC can be reprogrammed from output to input creates a vulnerability that can be abused by hackers,” said Professor Yuval Elovici, Director, BGU Cyber Security Research Center.

A typical computer chassis contains a number of audio jacks, either in the front panel, rear panel or both.

Each jack is used either for input (line-in), or for output (line-out). The audio chipsets in modern motherboards and sound cards include an option for changing the function of an audio port with software — a type of audio port programming referred to as jack retasking or jack remapping.

Malware can stealthily reconfigure the headphone jack from a line-out jack to a microphone jack, making the connected headphones function as a pair of recording microphones and turning the computer into an eavesdropping device.

This works even when the computer does not have a connected microphone, said the study published in the journal arxriv.

The researchers studied several attack scenarios to evaluate the signal quality of simple off-the-shelf headphones.

“We demonstrated it is possible to acquire intelligible audio through earphones up to several metres away,” Yosef Solewicz, an acoustic researcher at the BGU Cyber Security Research Center (CSRC) said.

“This is the reason people like Facebook Chairman and Chief Executive Officer Mark Zuckerberg tape up their mic and webcam,” lead researcher Mordechai Guri, Head of Research and Development at the CSRC, noted.

“You might tape the mic, but would be unlikely to tape the headphones or speakers,” Guri added.

Potential software countermeasures include completely disabling audio hardware, using an HD audio driver to alert users when microphones are being accessed, and developing and enforcing a strict rejacking policy within the industry.

Anti-malware and intrusion detection systems could also be developed to monitor and detect unauthorised speaker-to-mic retasking operations and block them, the researchers said.

Share this:
Support NewsKarnataka's quality independent journalism with a small contribution.

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Leave a Reply

Your email address will not be published. Required fields are marked *

Rohan City Corp

Find the best odds at 10Cric and IPL Betting 2023! Signup today and get up to a 100% deposit bonus.

To get the latest news on WhatsApp