KeySweeper: RF-based keystroke sniffer for Microsoft Wireless Keyboards, disguised ad USB charger (Samy Kamkar)
▻http://samy.pl/keysweeper
KeySweeper is a stealthy Arduino Pro Mini-based device, camouflaged as a functioning USB wall charger, that wirelessly and passively sniffs 2.4Ghz, decrypts, logs and reports back (over 2G GSM) all keystrokes from any Microsoft wireless keyboard in the vicinity.
All keystrokes are logged online and locally on flash storage. SMS alerts are sent upon trigger words, usernames or URLs, exposing passwords. If unplugged, KeySweeper continues to operate using its internal battery and auto-recharges upon repowering. A web based tool allows live keystroke monitoring.
The video is very interersting and gives you the details about the construction of the device.
▻https://www.youtube.com/watch?v=WqkmGG0biXc
The souce code can be found here:
▻https://github.com/samyk/keysweeper
Even thought it already surfaced in January 2015,
▻http://arstechnica.com/security/2015/01/meet-keysweeper-the-10-usb-charger-that-steals-ms-keyboard-strokes
it is only recently that the cyber division of the FBI issued an alert about it because more than just Microsoft wireless keyboards are vulnerable to the device.
Wireless Keystroke Logger Disguised as USB Device Charger Targets Wireless Keyboards
▻https://publicintelligence.net/fbi-keysweeper
The pdf:
▻https://info.publicintelligence.net/FBI-KeySweeper.pdf
“If placed strategically in an office or other location where individuals might use wireless devices, a malicious cyber actor could potentially harvest personally identifiable information, intellectual property, trade secrets, passwords, or other sensitive information,” the advisory says. “Since the data is intercepted prior to reaching the CPU, security managers may not have insight into how sensitive information is being stolen.”
Remark from the builder of the device since that FBI publication:
“The interesting thing to note is that when I released KeySweeper, only 1 out of 11 of their wireless keyboards had AES encryption. I’m looking now, and I believe all but one now have AES encryption,”
▻https://threatpost.com/fbi-mum-on-real-world-keysweeper-attacks/118260
#sniffing #keylogger
#Arduino
#privacy
#FBI