Wireless keyboards easily cracked


We first covered breaking the commodity 27MHz radios used in wireless keyboards, mice, and presenters when [Luis Miras] gave a talk at Black Hat. Since then, the people at Dreamlab have managed to crack the encryption on Microsoft’s Wireless Optical Desktop 1000 and 2000 products (and possibly more). Analyzing the protocol they found out that meta keys like shift and ALT are transmitted in cleartext. The “encryption” used on each regular keystroke involves XORing the key against a random one byte value determined during the initial sync with the receiver. So, if you sniff the handshake, you can decrypt the keystrokes. You really don’t have to though; there are only 256 possible encryption keys. Using a dictionary file you can check all possible keys and determine the correct one after only receiving 20-50 keystrokes. Their demo video shows them sniffing keystrokes from three different keyboards at the same time. Someone could potentially build a wireless keylogger that picks up every keystrokes from every keyboard in an office. You can read more about the attack in the whitepaper(pdf).

[via Midnight Research Labs]

Comments

  1. verdanseven says:

    Читать новые посты проще, чем чем подписаться на ленту, бред, юзаю opera 10

  2. NatochkaPopochka says:
  3. DonaldUA says:

    Нужен совет. Меняю входную дверь. Выбираю среди дверей Конекс и Новый мир. Кто в курсе, посоветуйте какого производителя выбрать. Зараннее спасибо.

  4. Hey guys, I found this great site where you can watch the spy next door movie. I definitely recommend you check it out I really think it’s going to be a winner especially if you like

  5. Hey guys, I found this great site where you can watch the spy next door movie. I definitely recommend you check it out I really think it’s going to be a winner especially if you like

  6. Hey guys, I found this great site where you can watch

  7. p90x workout says:

    I really love this hack. Thanks.

  8. XRumerFan says:

    [b]XRumer 5.0.12 Palladium[/b] is the BEST program for SEO!

    Learn more:
    [i]URL is hidden.. Just ask Google for XRumer[/i] ;)

    See you later!..

    ………………[color=red][b]WTF?![/b][/color]
    YOU DONT KNOW WHAT IS “XRUMER”?!

    It is the most known software for MASS-POSTING! (Did you read about XRumer in Wikipedia, hm? ;) )
    It’s automatically post to blogs,forums,guestbooks,bbs’s, etc. – automatically BREAK CAPTCHA’s, ACTIVATE EMAIL LINKS, EDIT PROFILES, and more, and more.
    I already said – just Google for it.

    “Robots can EVERYTING ;)” (C)
    [img]http://imhoblog.ru/wp-content/uploads/2009/04/cut_robot265868.jpg[/img]

  9. Copblotte says:

    filesh test posting
    filesh test posting

  10. cynccoence says:

    What kinds of sex you know? Why it’s positive for your health? How many sex you have for one week?

  11. I saw the P90X infomercial this morning and I’m intrigued. I will do more research online before I buy it. It is kind of expensive with all the accessories.

  12. Ниче се, я и не знал

  13. Excellent trick, I may tested to see if it works lol.

  14. Anon says:

    @cynccoence

    Doesn’t matter if your grammar sucks. :P

    … stupid spammers.

  15. broken_bazooka says:

    You wired wankers are just jealous of us who can sit at the beach all day with our _wireless_ keyboard and mouse, and not worry about sand getting inside the computer or display left safely at home.

  16. Zibri says:

    Logitech G700 mouse has aes 128 encryption…

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Follow

Get every new post delivered to your Inbox.

Join 92,003 other followers