Experimental malware uses inaudible sound to defeat network air gaps
Researchers built a covert acoustical mesh network and used audio signals to transmit data between laptops
IDG News Service - In a development likely to concern those who believe that a system that's not connected to a network is safe from surveillance, researchers have demonstrated that microphones and speakers built into laptops can be used to covertly transmit and receive data through inaudible audio signals
Michael Hanspach and Michael Goetz, two researchers from the Fraunhofer Institute for Communication, Information Processing and Ergonomics (FKIE) in Germany, tested the feasibility of creating a covert acoustical mesh network between multiple laptops that's used to exchange data using near ultrasonic frequencies. The two researchers presented their findings recently in a paper published in the Journal of Communications.
Their experiments showed that messages can be transmitted using audio signals in the low ultrasonic frequency range at around 20,000 Hz between two Lenovo T410 business laptops over a maximum distance of 19.7 meters and at a rate of 20bps.
The Lenovo T410 laptops were placed in direct line of sight to each other and the volume levels were adjusted to make the transmission inaudible to observers. The transmission frequencies could be increased to more than 20,000 Hz for increased stealthiness, but the transmission range would decrease, the researchers said.
The data was transmitted using two different acoustical modem software applications called Minimodem and Adaptive Communication System (ACS) modem, the latter delivering the best results. On the network layer, the researchers used an ad-hoc routing protocol called GUWMANET (Gossiping in Underwater Mobile Ad-hoc Networks) that was developed by FKIE for underwater communication.
The researchers built an acoustical mesh network of five laptops that relayed messages to each other using audio transmissions in order to show that an attacker can jump network air gaps to extract data from computers infected with malware that are isolated from the Internet and other untrusted networks.
Common sources of noise present in the environment, like human speech, are filtered out and do not affect the communication, Hanspach said Tuesday via email.
Every laptop needs to be in direct line of sight to at least another laptop that acts as a node in the network, but according to the researcher, this is a very common setup in labs and open-plan offices.
Human movement around the laptops can have an adverse effect on connectivity, but if a transmission fails, it can just be sent out again, the researcher said.
The biggest limitation is the low transmission rate -- 20bps -- which cannot be used to transfer large amounts of information in a reasonable period of time. However, it's still enough to transmit small pieces of valuable information like log-in credentials and encryption keys stolen by malware running on the air-gapped computer and can also be used to relay commands back from the attacker.
- Best iPhone, iPad Business Apps for 2014
- 14 Tech Conventions You Should Attend in 2014
- 10 Desktop Apps to Power Your Windows PC
- How to Add New Job Skills Without Going Back to School
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Streamline Data Protection with IBM Tivoli Storage Manager Operations Center IBM Tivoli Storage Manager (TSM) has been an industry-standard data protection solution for two decades. But, where most competitors focus exclusively on Backup...
- Top tips for securing big data environments - Why big data doesn't have to mean big security challenges Organizations don't have to feel overwhelmed when it comes to securing big data environments. The same security fundamentals for securing databases, data warehouses...
- Top 3 Myths about Big Data Security : Debunking common misconceptions about big data security Big data represents massive business possibilities and competitive advantage for organizations that are able to harness and use that information. But how are...
- Three guiding principles for data security and compliance Data security is a moving target-as data grows, more sophisticated threats emerge; the number of regulations increase; and changing economic times make it...
- Druva inSync: Endpoint Data Protection & Governance CLICK HERE to watch this video about protecting corporate data on laptops and mobile devices, sponsored by Druva.
- How SIEM Addresses the Challenges of Big Security Data This webcast will help you understand today's big data security challenges and how intelligent and scalable SIEM solutions give IT the tools and... All Data Security White Papers | Webcasts