Well as much as we hear that there is no issues for those who own Apples there is and it was demonstrated at Blackhat (Defcon 17) this year.
APPLE KEYBOARDS ARE vulnerable to a hack that puts keyloggers and Malware directly into the keyboard. This could be a serious problem, and now that the presentation and code is out there, the bad guys will surely be exploiting it.
The vulnerability was discovered by K. Chen, and he gave a talk on it at Blackhat this year. The concept is simple, a modern Apple keyboard has about 8K of flash memory, and 256 bytes of working ram. For the intelligent, this is more than enough space to have a field day.
K. Chen demonstrated the hack to S|A at Defcon today and it worked quite well. You start out by running GDB, and set a breakpoint in Apple's HIDFirmwareUpdaterTool. This tool is meant to update the firmware in human interface devices, hence the name. The tool is run, a breakpoint set, and then you simply cut and paste the new code into the firmware image in memory. That's it.
Here is a mini video of K. Chen showing how it works
now in the story they mention a PDF that shows the code
The new firmware can do anything you want it to. K. Chen demo'd code that you put in a password, and when you hit return, it starts playing back the last five characters typed in, LIFO. It is a rudimentary keylogger, a proof of concept more than anything else. Since there is about 1K of flash free in the keyboard itself, you can log quite a few keystrokes totally transparently. If you want the code, it is on page 170 of the PDF presentation linked above.
You can read the code PDF HERE
So why didn't they just tell Apple about this?
Apple Keyboards Vulnerable to Firmware Hack
They would've told Apple about this, but the last few times when they called Apple in similar cases, the company didn't even return their calls. "Don't believe them when they try to spin this as minor, owning a keyboard gives you ownership of a system."
Chen can write a tool to lock down the firmware, he says, but he's waiting for a possible official solution from Apple before he attempts to do so. However, he is afraid that Apple will fix this in current and future versions of Mac OS X only, leaving the keyboards open to be attacked from other sources. The fix needs to be implemented at the hardware/firmware level, he says.
Recent comments
32 weeks 1 day ago
32 weeks 1 day ago
32 weeks 1 day ago
35 weeks 3 days ago
43 weeks 3 days ago
1 year 22 weeks ago
1 year 22 weeks ago
1 year 23 weeks ago
1 year 23 weeks ago
1 year 23 weeks ago