ETHERLED: Systems leak data via network card LEDs

xrobwx71

xrobwx71

Administrator
Staff member
Joined
Sep 27, 2019
Posts
2,819
Location
Panama City Beach, FL
Israeli researcher Mordechai Guri has discovered a new method to exfiltrate data from air-gapped systems using the LED indicators on network cards. Dubbed 'ETHERLED', the method turns the blinking lights into Morse code signals that can be decoded by an attacker.

Capturing the signals requires a camera with a direct line of sight to LED lights on the air-gapped computer's card. These can be translated into binary data to steal information.

Read More at the Source
 
Yes, but first you're going to have to get software onto the machine that is airgapped, which of course can only be done with hands-on access. Add to the fact that you'll also need line of sight of the flashing LEDs so you can monitor them, not to mention that any regular user of the machine would have to be blind not to notice them flashing more than normal, and you've got a pretty useless spy system.

As a proof of concept it's interesting, but as a practical device ................... well let's just say it needs some work.
 

Has Sysnative Forums helped you? Please consider donating to help us support the site!

Back
Top