User Login

Help Community Login:

A Hack on Apple Keyboards (installs a keyloger)

Smartmom's picture
From:
Wellington Florida
Smartmom
Banned Member (Way To Go!)
Relationship Status:
Married
Joined: 01/15/2009
Posts: 6389
Drops: -24
Mood: Giggly

Well as much as we hear that there is no issues for those who own Apples there is and it was demonstrated at Blackhat (Defcon 17) this year.

Apple keyboard firmware hack demonstrated

APPLE KEYBOARDS ARE vulnerable to a hack that puts keyloggers and MalwareMalwarebytes Anti-virus / Anti-malware directly into the keyboard. This could be a serious problem, and now that the presentation and code is out there, the bad guys will surely be exploiting it.

The vulnerability was discovered by K. Chen, and he gave a talk on it at Blackhat this year. The concept is simple, a modern Apple keyboard has about 8K of flash memory, and 256 bytes of working ram. For the intelligent, this is more than enough space to have a field day.

K. Chen demonstrated the hack to S|A at Defcon today and it worked quite well. You start out by running GDB, and set a breakpoint in Apple's HIDFirmwareUpdaterTool. This tool is meant to update the firmware in human interface devices, hence the name. The tool is run, a breakpoint set, and then you simply cut and paste the new code into the firmware image in memory. That's it.

Here is a mini video of K. Chen showing how it works

now in the story they mention a PDF that shows the code

the story wrote:

The new firmware can do anything you want it to. K. Chen demo'd code that you put in a password, and when you hit return, it starts playing back the last five characters typed in, LIFO. It is a rudimentary keylogger, a proof of concept more than anything else. Since there is about 1K of flash free in the keyboard itself, you can log quite a few keystrokes totally transparently. If you want the code, it is on page 170 of the PDF presentation linked above.

You can read the code PDF HERE

So why didn't they just tell Apple about this?

Apple Keyboards Vulnerable to Firmware Hack

They would've told Apple about this, but the last few times when they called Apple in similar cases, the company didn't even return their calls. "Don't believe them when they try to spin this as minor, owning a keyboard gives you ownership of a system."

Chen can write a tool to lock down the firmware, he says, but he's waiting for a possible official solution from Apple before he attempts to do so. However, he is afraid that Apple will fix this in current and future versions of Mac OS X only, leaving the keyboards open to be attacked from other sources. The fix needs to be implemented at the hardware/firmware level, he says.

I Averaged: 0 | 0 votes

Who's New

Dylan's picture
BradyMartin's picture
Alam560's picture
CalamityPT's picture
zane truese's picture
Saadi's picture
qq qq qq's picture
jiang000 jiang000 jiang000's picture
Ash msdgroup's picture
budibanyu's picture
beferry's picture
XaicOaken's picture
routerbitmall's picture
sunshine's picture
botlobbyu4gm's picture
facebook codes exploits tips tricks Phrozen Crew
All contents ©Copyright GeekDrop™ 2009-2025
TOS | Privacy Policy