1. Computing

Using a wireless mouse or keyboard? They can be hijacked from up to 100 yards away

By

using a wireless mouse or keyboard they can be hijacked from up to 100 yards away microsoft universal foldable typing angle
Although wireless peripherals have the potential to de-clutter your desk and untether you from your system, it turns out they also represent a glaring hole in your digital security. Mice, keyboards and other wireless peripherals from a number of hardware manufacturers are vulnerable to a particular hack called MouseJack, which could see your hardware being taken over from up to 100 yards away.

The MouseJack vulnerability stems from the lack of encryption of the wireless signal of most wireless USB hardware as it’s transferred from the peripheral to the wireless base station. It is quite simple to add additional information to alter how a movement is interpreted, or worse still, send commands while a user isn’t there to see it.

The flaw is said to be applicable to many peripherals from Amazon, Dell, Gigabyte, HP, Lenovo, Logitech and Microsoft (as per PCWorld). The reason for their susceptibility to the attack, is that they all utilize the same Nordic Semiconductor chips. Some of those chips support encryption and can therefore implement some sort of patch or fix for it – many are already working on it – but those without chips that can support obfuscation may be forced to leave users in a vulnerable state.

Logitech has already released a fix for its affected devices. Dell believes it is unlikely to be utilized as an attack vector, and does not plan to release a patch at this time.

Fortunately, the attack method isn’t foolproof. Hackers would need to be within that 100 yard radius and also need a direct line of sight to the wireless base station, which is far from ideal in most scenarios. If a wireless antenna is used, however, that range can be extended further, and even pass through walls and windows.

There’s also the matter of knowing what commands to send. Presumably, a potential attacker would need to know what the victim was doing to insert harmful commands. That’s not impossible, but it certainly makes the attack more difficult to execute. MouseJack seems more likely to be used as a means of pranking co-workers than a harmful attack.

But hackers are an ingenious bunch, and often use seemingly minor vulnerabilities to achieve impressive results. We hope most companies take Logitech’s approach, and patch the problem.

Editors' Recommendations

The best wireless keyboards for 2021

Microsoft Surface Studio 2

Logitech built Bolt to make wireless mice and keyboards work better

Logi Bolt is a new wireless connection standard designed by Logitech to connect business mice and keyboards.

Logitech G915 Lightspeed TKL long-term review: The Magic Keyboard for gaming

logitech g915 lightspeed tkl review featured

Wired speeds in a $60 cordless gaming mouse? Logitech did it

logitech g305 mouse brings pro gaming mainstream 20180514 110449 640x427 c

With Tesla bleeding money, Elon Musk initiates hardcore spending review

Tesla Model Y front

Best cheap Apple deals and sales for September 2021

dell xps 15 vs macbook pro 16 apple ry 14 1200x9999

HP is having a huge sale on laptops and monitors — Here are the best deals

The HP Envy x360 laptop has a 360-degree hinge

How does Ring Live View work?

Ring Video Doorbell installed on a home.

24 hours hands-on with the iPhone 13, Pro, Max, and Mini: Refinements all around

iPhone 13 models arrayed with screen on.

Apex Legends Seer guide: How to play, abilities, and lore

Seer taunting towards the camera.

Everything we know about Bayonetta 3

Bayonetta in Bayonetta 3.

The best movies leaving Hulu at the end of September

The cast of A Fish Called Wanda.

The 52 best movies on Amazon Prime Video right now

Lou de Laâge and Mélanie Laurent in The Mad Women's Ball on Amazon Prime Video.