Slashdot Mirror


Data Exfiltrators Send Info Over PCs' Power Supply Cables (theregister.co.uk)

From a report on The Register: If you want your computer to be really secure, disconnect its power cable. So says Mordechai Guri and his team of side-channel sleuths at the Ben-Gurion University of the Negev. The crew have penned a paper titled PowerHammer: Exfiltrating Data from Air-Gapped Computers through Power Lines that explains how attackers could install malware that regulates CPU utilisation and creates fluctuations in the current flow that could modulate and encode data. The variations would be "propagated through the power lines" to the outside world.

Depending on the attacker's approach, data could be exfiltrated at between 10 and 1,000 bits-per-second. The higher speed would work if attackers can get at the cable connected to the computer's power supply. The slower speed works if attackers can only access a building's electrical services panel. The PowerHammer malware spikes the CPU utilisation by choosing cores that aren't currently in use by user operations (to make it less noticeable). Guri and his pals use frequency shift keying to encode data onto the line.

6 of 131 comments (clear)

  1. Apple will fix this with $100 DRMed power cables by Joe_Dragon · · Score: 3, Funny

    Apple will fix this with $100 DRMed power cables.

    years ago alienware had an $50+ upgraded power cable as an add on.

  2. Spoken like a true desktop security guru by xxxJonBoyxxx · · Score: 5, Funny

    >> If you want your computer to be really secure, disconnect its power cable

    Spoken like a true desktop security guru.

  3. Virus scanner plugs this security hole. by Anonymous Coward · · Score: 5, Funny

    On my work machine our overzealous virus scanner settings have closed this security hole... the CPU is constantly pegged at 100% ensuring that the power can't fluctuate at all.

    It also eliminated the need for a furnace in the building.

  4. Exfiltrating data via user facial expressions. by shess · · Score: 4, Funny

    The paper describes a method of adding jank to applications which will cause users to frown and furrow their eyebrows, which in turn can be monitored by a high-def camera furtively installed on their monitor to communicate between 100 and 1337 bits per minute to attackers.

    ----

    Honestly, who approves this research? I mean, yes, it's possible, but if your computer is "air-gapped" and the attackers have the ability to breath your air, you are already screwed.

  5. Re:after installing malware by PPH · · Score: 4, Funny

    Don't install malware

    You insensitive clod! I run Windows.

    --
    Have gnu, will travel.
  6. Re:So, how this works by the_skywise · · Score: 4, Funny

    That would be a great Mission Impossible scene though - break into the facility, break into the air-gapped computer room and Benji leans down to the power cable:

    Ethan: "What are you doing?"
    Benji: "I'm installing the tap on the power cable which will adjust the power frequency of the CPU so we can hack into the system and collect the data"
    Ethan: "Benji... there's a post-it note right here with the password on it"
    Benji: "Oh... well...that works too"