Wireless keyboards easily cracked

We first covered breaking the commodity 27MHz radios used in wireless keyboards, mice, and presenters when [Luis Miras] gave a talk at Black Hat. Since then, the people at Dreamlab have managed to crack the encryption on Microsoft’s Wireless Optical Desktop 1000 and 2000 products (and possibly more). Analyzing the protocol they found out that meta keys like shift and ALT are transmitted in cleartext. The “encryption” used on each regular keystroke involves XORing the key against a random one byte value determined during the initial sync with the receiver. So, if you sniff the handshake, you can decrypt the keystrokes. You really don’t have to though; there are only 256 possible encryption keys. Using a dictionary file you can check all possible keys and determine the correct one after only receiving 20-50 keystrokes. Their demo video shows them sniffing keystrokes from three different keyboards at the same time. Someone could potentially build a wireless keylogger that picks up every keystrokes from every keyboard in an office. You can read more about the attack in the whitepaper(pdf).

[via Midnight Research Labs]

digg_url = ‘http://digg.com/hardware/Wireless_keyboard_encryption_easily_broken’;

67 thoughts on “Wireless keyboards easily cracked

  1. Нужен совет. Меняю входную дверь. Выбираю среди дверей Конекс и Новый мир. Кто в курсе, посоветуйте какого производителя выбрать. Зараннее спасибо.

  2. [b]XRumer 5.0.12 Palladium[/b] is the BEST program for SEO!

    Learn more:
    [i]URL is hidden.. Just ask Google for XRumer[/i] ;)

    See you later!..

    ………………[color=red][b]WTF?![/b][/color]
    YOU DONT KNOW WHAT IS “XRUMER”?!

    It is the most known software for MASS-POSTING! (Did you read about XRumer in Wikipedia, hm? ;) )
    It’s automatically post to blogs,forums,guestbooks,bbs’s, etc. – automatically BREAK CAPTCHA’s, ACTIVATE EMAIL LINKS, EDIT PROFILES, and more, and more.
    I already said – just Google for it.

    “Robots can EVERYTING ;)” (C)
    [img]http://imhoblog.ru/wp-content/uploads/2009/04/cut_robot265868.jpg[/img]

  3. You wired wankers are just jealous of us who can sit at the beach all day with our _wireless_ keyboard and mouse, and not worry about sand getting inside the computer or display left safely at home.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s