Data stealing has many forms. Hackers use a wide range of techniques to steal sensitive data from users and sell them in underground forums for money. As the white hats are defending against every new technique of black hats, they invent new methods to steal data. And hereโs a new technique unveiled by researchers that could potentially steal data from computer screenโs brightness!
We have come a long way. Weโve seen data being stolen from general password hacks, account compromising, malware attacks by phishing. But the new age attacks are affecting the system heat produced, radio waves, ultrasonic waves and even altering the power supplied to PC. And now, thereโs yet another inventive method of doing so โ Air Gap.
The new method
From the research made by Mordechai Guri and his team from Ben Gurion University in Israel, theyโve successfully exfiltrated data from an air-gapped PC, which is distant and not connected to internet network in any way. Making this experiment possible firstly needs the attackers to implant malware in the victimโs computer. So, researchers here have done it. They planted a malware that can modulate the brightness coming off from the screen.
Capturing and Conversion
This malware is capable of modulating the data in ASK, thereby turning it into the binary language of 0s and 1s. While these are caused due to slight brightness variations in display emissions, theyโre almost impossible to be detected by a humanโs naked eye. But, can be detected and translated by the researcherโs systems.
As every pixel on screen consists of RGB, each of them emits different colours varied by content. And this can be captured by hackers by compromising any surveillance camera or web camera thatโs directly monitoring the screen. And if this feed is gathered, the hacker, as researchers did, can translate the emitted brightness into readable language. This can be used for a number of exploitations thereafter.