Gyroscope-based Smartphone Keylogging Attack

August 18, 2011 by Mike Nathan 31 Comments

smartphone_keylogging_with_gyroscopes

A pair of security researchers have recently unveiled an interesting new keylogging method (PDF Research Paper) that makes use of a very unlikely smartphone component, your gyroscope.

Most smart phones now come equipped with gyroscopes, which can be accessed by any application at any time. [Hao Chen and Lian Cai] were able to use an Android phone’s orientation data to pin down what buttons were being pressed by the user. The attack is not perfect, as the researchers were only able to discern the correct keypress about 72% of the time, but it certainly is a good start.

This side channel attack works because it turns out that each button on a smart phone has a unique “signature”, in that the phone will consistently be tilted in a certain way with each keypress. The pair does admit that the software becomes far less accurate when working with a full qwerty keyboard due to button proximity, but a 10 digit pad and keypads found on tablets can be sniffed with relatively good results.

We don’t think this is anything you should really be worried about, but it’s an interesting attack nonetheless.

[Thanks, der_picknicker]

Very Clean Android Headphone Controller Project

August 17, 2011 by Mike Szczys 15 Comments

Here’s an Android headphone add-on so clean that most people won’t know you built it yourself. [Will Robertson] was unsatisfied with the stock headphones that came with his HTC phone, but didn’t want to lose the control interface when upgrading. He built this add-on that lets him control the Android music player.

He was inspired to do this after reading about the control interface in one of our previous features. That hack detailed how to add control based on the 4-conductor headphone jack, but didn’t see us through to a clean finished product. [Will] picked up where it left off by designing a sleek surface mount board that hosts a headphone jack and three tactile switches. A patch cable is soldered opposite the jack, making this work as a pass-through device. The icing on the cake is the shrink tubing that masks the fact that this is a diy dongle.

If you want to follow his lead, [Will] posted his EagleCAD design files and footprints for the components he used in the post linked at the top.

Programming The Kinect To Work With Android

August 8, 2011 by Jeremy Cook 7 Comments

The Kinect has been hacked for many purposes, but this Android implementation tutorial is the first we’ve heard of it being used on a mobile phone platform. Although not a finished product at this point, [Raymond’s] tutorial is a good starting point for those wanting to experiment with fusing these two technologies.

The Kinect programming for this tutorial has been done with the Tegra Ventana development kit for Android 3.0. An Ubuntu-Linux installation is used, but this technique should be portable to any Linux system according to the author.

The procedure given is pretty straightforward, and the author even provides an example of the results in a video after the break. It’s interesting to note that, when connected, the Kinect is seen as two devices, “Xbox NUI Camera” and “Xbox NUI audio”. We look forward to new hacks to come out for this device, possibly using this set of tools. Continue reading “Programming The Kinect To Work With Android” →

Google ADK Clones Pack A Few Extra Features, Hopefully Far Cheaper Than The Original

August 1, 2011 by Mike Nathan 9 Comments

adk_board_clone

[charliex] from Null Space Labs wrote in to share a project that he and the rest of the gang have been working on over the last few weeks. The team has been remixing and building clones of the Google ADK demo board we saw earlier this year, in hopes of getting a huge batch prepped before Defcon 19.

Their version makes subtle changes to the original, such as extra header rows for Mega AVRs, higher quality RGB LEDs, and a nifty pirate-Android logo. They also added the ability for the board to send and receive IR signals allowing it to be used as a TV-B-Gone, as well as in more fruitful pursuits. The Arduino board used with the ADK has only undergone minor revisions, most of which were layout related.

[charliex] hasn’t mentioned a price for their improved ADK boards, but we’re guessing they will be substantially cheaper than the official Google version. In the meantime, check out their site for a boatload of pictures and videos of these boards undergoing various stages of construction.

Android Controlled T-shirt Cannon

July 16, 2011 by Brian Benchoff 33 Comments

Every year, Qualcomm hosts the “Battle of the Schools.” This year the goal was to build homemade contraptions that would be judged on how cool they are. [Doug DeCarme], [Shaver Deyerle], and [Zach Rattner] – three Qualcomm employees at Virginia Tech – built an Android controlled t-shirt cannon for this event and ended up tying with Michigan State for first place.

The cannon is built around an Arduino Uno and a BlueSMiRF Bluetooth modem. [Doug DeCarme], the Android developer of the group, put together an app that would fire each barrel independently. The valves for the cannon are just 150 PSI inline sprinkler valves, bought from the local Home Depot. From the project breakdown, the team spent less than $150 on entire project.

From the video, we see that they’re getting some pretty good distance firing t-shirts at 160 PSI. Although we question the wisdom of using PVC as a pressure vessel holding 160 PSI, changing the PVC to a proper air reservoir wouldn’t be that hard.

IOIO Upgrades Get A Bit Easier

July 13, 2011 by Mike Szczys 2 Comments

The IOIO, a breakout board for Android phones that predates the Android Developer Kit hardware, is a now a little bit easier to upgrade. That’s because [Ytai’s] IOIO manager app just his the Android market. The PIC24F that sits proudly on top of the board has always been running a bootloader, but for security reasons it is programmed to only talk to apps that have been officially signed. Now that there’s an app that meets this qualification, you can upgrade the firmware from your phone without the need for an external programmer.

What about the bootloader itself? Surely that will need upgrades over time, right? Well, yes. [Ytai’s] announcement today also came with an option for upgrading the bootloader but with one caveat. You’ll need two IOIO boards to complete the upgrade. One connects to the phone and becomes a programmer, while the other lays back and waits for a refreshing code flash.

Character LCD Screen Add-on For Android Devices

July 12, 2011 by Mike Szczys 10 Comments

Here’s an Android accessory project that adds a secondary LCD display. It utilizes the Android Open Accessory Development Kit standard to connect the 16×2 character LCD as a USB device. It pairs an app on the phone which runs transparently with firmware for the ATmega2560-based Arduino compatible board you see to the left. The app launches as soon as the auxiliary hardware is connected and is responsible for determining which lines of text are pushed out to the LCD. The example code displays the current time on the top line, and scrolls incoming text messages as they are received.

This is a good way to get your feet wet with the ADK hardware. We’ve already seen it used for larger displays like this LED marquee, but this smaller test project doesn’t require much hardware setup. Chances are you either already have an Arduino and character LCD on hand, or can easily borrow which makes this an easy weekend project.

One note on that Arduino compatible board; it’s called a Freakduino ADK but we couldn’t figure out if it’s a Freak Labs product or not. If you have some insight about that, please leave a comment.