Hackers circumvent 'air gap' security with a drone that 'reads' the lights on a computer

hacking drone led computer 33574327 l
Alexander Kolomietz/123RF
If you weren’t concerned about the sight of a drone hovering outside your window peering in at you (and, for the record, you probably should be!), you certainly will when you hear that it could be extracting sensitive data from your computer.

That is according to researchers in the Cyber Security Research Labs at Ben-Gurion University of the Negev in Beersheba, Israel, who have demonstrated an espionage technique that would make James Bond blush, in which a quadcopter films the flashing LED lights on a computer and uses this to steal your data, via a Morse code-style message.

“In this work, we found a novel method to extract data from a computer in a very covert and speedy way,” researcher Mordechai Guri, the research and development manager at Cyber Security Research Labs, told Digital Trends.

The attack method is designed to get around computers which use an “air gap” to protect them, basically removing them from the internet so they can’t be hacked in traditional ways.

Fortunately, things are a bit more complicated than simply getting a camera-equipped drone to play peeping tom. To work, the targeted computer first needs to be infected with malware on a USB or SD card, so would-be villains will need to think of a clever way to smuggle one of those into your office before they even think about firing up a UAV.

No, it’s not enormously practical — but due to the speed that LED lights can blink (faster than a human eye), it is possible for hackers to achieve up to 4,000 bits-per-second in data transfer. A couple of megabytes an hour means that it would take aggressors a long time to extract your HD copy of Rogue One: A Star Wars Story, but it does mean that stealing an encryption key wouldn’t take too long.

“We’re academic researchers. We don’t deal with use-cases, but just establish and analyze possible ways to do this,” Guri said. “Certainly, this is not a usual regular grade attack. However, there are organizations such as banks that have air-gapped computers with valuable, sensitive information they want to keep private. In that case, it’s not unimaginable that we may see more extreme methods used to extract data.”

So how should they protect against such an ultra high-tech attack? Ironically, in the most low-fi ways possible. “You could try putting tape over the LEDs, but that’s not an elegant solution,” Guri continued. “Another solution would be to have the computer in a room with blacked-out windows or curtains to reduce the optical visibility of the computer from outside.”

So, basically, the anti-hacking security version of ‘have you tried turning it off and on again?’ advice.

Emerging Tech

A.I.-powered website creates freakishly lifelike faces of people who don’t exist

No, this isn't a picture of a missing person. It's a face generated by a new artificial intelligence on the website ThisPersonDoesNotExist.com. Here's how the impressive A.I. works.
Outdoors

The best heated gloves keep your hands toasty warm in all temperatures

When temperatures plunge, the first thing that gets cold are your fingers. Ward off frostbite and keep your digits toasty warm with these best heated gloves.
Computing

Enjoy Windows on a Chromebook with these great tips and tricks

If you want to push the functionality of your new Chromebook to another level, and Linux isn't really your deal, you can try installing Windows on a Chromebook. Here's how to do so in case you're looking to nab some Windows-only software.
Photography

Tight on space? Here’s how to transfer photos from an iPhone to a computer

Never lose any of your cherished selfies or family vacation photos from your iPhone again by learning how to transfer photos from your iPhone to a computer, whether you want to use a cable or wireless transfer.
Mobile

Forgot your Android password or PIN? Here’s what you need to do

It’s a horrible feeling when you forget your Android password, PIN, or pattern and can’t access your smartphone. Thankfully, there are some things you can do to gain access to your device. Find out what your options are right here.
Mobile

These 13 gadgets walk a fine line between ingenious and insane

The annual avalanche of devices and gadgets is astounding, but how many will succeed? A few are destined to spark new trends, while the majority fade deservedly into obscurity. We look at some gadgets on the border of brilliant and bonkers.
Emerging Tech

Global Good wants to rid the world of deadly diseases with lasers and A.I.

Global Good, a collaboration between Intellectual Ventures and Bill Gates, aims to eradicate diseases that kill children in developing nations. It tackles difficult problems with high-tech prototypes.
Emerging Tech

China’s mind-controlled cyborg rats are proof we live in a cyberpunk dystopia

Neuroscience researchers from Zhejiang University, China, have created a method that allows humans to control the movements of rats using a technology called a brain-brain interface.
Emerging Tech

NASA’s MAVEN orbiter has a new job as a communication relay for Mars 2020

NASA's Mars Atmosphere and Volatile Evolution (MAVEN) orbiter has been collecting atmospheric readings but now is taking on a new job as a data relay satellite for the Mars 2020 mission that launches next year.
Emerging Tech

Underground volcanoes could explain possible liquid water on Mars

Last year scientists discovered there could be liquid water on Mars. Now a research team argues that for there to be liquid water, there must be an underground source of heat -- and they believe underground volcanoes could be responsible.
Emerging Tech

The 10 most expensive drones that you (a civilian) can buy

OK, these drones may be a bit beyond your budget: Check out the most expensive drones in the world, from industrial giants to highest-end filming tools.
Emerging Tech

Of all the vape pens in the world, these 5 are the best

Vaping concentrates has become significantly more popular, especially among those that use cannabis for medicinal purposes. But don’t use just any vape pen: we found these five devices to be our favorites in 2018.
Computing

The HoloLens 2 will be announced at MWC. Here's what we know about it so far

The HoloLens 2 is ripe for an announcement. Here's what Microsoft has revealed so far, what's likely in store for the next generation HoloLens, and everything that we know about this mixed reality headset.
Emerging Tech

A river of stars one billion years old flows across the southern sky

Astronomers have identified a river of stars flowing across our galaxy and covering most of the southern sky. The estimated 4000 stars that comprise the stream were born together and have been moving together for the last one billion years.