HACKERS CAN GAIN ACCESS TO YOUR COMPUTER MONITOR — A CYBERSECURITY EXPERT SHOWS US HOW EASY IT IS (VIDEO).
Everyone knows your computer can be hacked, but did you know your monitor might also be used against you? Ang Cui from Red Balloon Security has figured out a way to hack into a popular Dell monitor and manipulate what you see on your screen. Using this type of attack, a user could easily be tricked into revealing personal, private information. Here’s how it works. Following is a transcript of the video.
Ang Cui: Basically, you can’t trust the thing that’s coming out of your computer, because the monitor is changing the content of the screen.
Hello, my name is Ang Cui. I am the founder and chief scientist of Red Balloon Security.
Let’s look at a typical embedded vulnerability and what it means.
Here we have a beautiful Dell (U2410) 24-inch monitor. And if you look at this website, it’s obviously a mock not- real website. What you probably have not thought about is that this monitor also has a computer inside the monitor itself that’s responsible for displaying pixels and selecting input. It’s generally called the on-screen display controller.
Now our research found that there is a way for an attacker to gain access to and cause arbitrary code execution inside the controller of the monitor itself. What if you can’t trust the output of your computer, because the monitor is actually changing the pixel values on the screen?
So that’s exactly what we did. If the attacker redirects you to a website that looks a lot like your banking website, you’re not going to be able to see that same SSL lock on your browser. So this is where the attacker would then compromise your monitor and put that SSL lock onto the screen.
We’ve made this SSL lock not move at all. It is possible to have this thing move with the browser, but for demonstration purposes, we’ve made it not follow the screen.
So your computer is not showing you that your connection is secure, but the monitor is overlaying the SSL lock onto it.
We can use the monitor itself to change what you see as in your bank account. So instead of having $100, we can make your monitor show that your bank account has a million dollars. There’s no way for the user to know, because we only interact with this computer through the monitor.
We estimate that there’s at least a billion monitors on the planet today that’s vulnerable to this type of attack.
Ang calls the hack “A Monitor Darkly.” The exploit is detailed on Red Balloon’s GitHub.
Monitor Darkly is featured in season 3 of “Mr. Robot.”
Elliot Alderson: What were you doing by my computer? I saw you behind the monitor.
Ang’s team has informed Dell about the vulnerability. Dell recommends users update to a U2415 monitor. They say “security is a top concern and priority.”
CLICK TO WATCH THE VIDEO:
BY: CHRIS SNYDER-BUSINESS INSIDER.
FOR ADVERTISED IN OUR WEBPAGE CONTACT email@example.com OR visit www.ghanamediaworld.com
WE PUBLISHED 99% GHANA NEWS AND THE REST 1% IS FOR OUTSIDE WORLD NEWS, GHANA FIRST,PUBLISHED YOUR OWN FIRST TO WIN BETTER FUTURE.
DISCLAIMER: “The views expressed in this article are the sole responsibility of the author and do not neccessarily reflect those of Ghana Media World. The contents of this article are of sole responsibility of the author(s). Ghana Media World will not be responsible or liable for any inaccurate or incorrect statements contained in this article.” © GHANAMEDIAWORLD.COM
HAVE A SAY. WHAT DO YOU THINK? DROP COMMENTS!
@ghanamediaworld on Twitter / lnstagram ghanamediaworld
Do you have a story for The Ghanameiaworld Online news team? Email us at firstname.lastname@example.org Or call us:
THE NEWS ITEMS ARE REAL AND WE ARE NOT FAKE MEDIA,WE ARE HERE FOR YOU BECAUSE OF TRUELY MEDIA. IF NOT BECAUSE OF YOU, WE CANNOT BE GHANA MEDIA WORLD. OR WHAT WE HAVE REACH TO BE NOW.WE PUBLISH WHAT IS TRUELY INSIDE THE MEDIA OF THE WORLD, FROM JOURNALIST NEWS,MEDIA NEWS, STARS NEWS, PERSONAL PRIVATE ADVERTISED AND CELEBRATIES NEWS,AND FROM THE PEOPLE WE GET TO KNOW,THE REAL NEWS FROM AND TO GHANA MEDIA WORLD, WITHOUT HIDDEN THINGS FROM YOU AND FROM THE TRUTH THAT WE GET FROM MEDIA AND JOURNALIST.AND ALSO SOMEWHERE WE GET TO KNOWN.OUR MEDIA PAGE IS STILL NOT COMPLETED,THERE IS A LOTS TO BE DONE IN GHANA MEDIA WORLD PAGE ONLINE. PUBLISHED NEWS,WE ADVERTISE FOR PEOPLE,ETC.LISTEN TO MANY RADIO STATIONS IN OUR PAGE BY CLICK.
READ MORE @ WWW.GHANAMEDIAWORLD.COM
CONTACT OF MEDIA AND ADVITISED IN OUR WEBPAGE ,IF YOU NEED PROFECTIONALS RADIO STATION LIVE STREAMING FOR BROADCASTING TOOLS PLUS WEBPAGE,DOMAIN,WE ARE NUMBER ONE PROFECTIONALS TO HELP YOU,NEWS,RADIOS,MEDIA,MAGAZINES,ADVERTISMENTS.LIVE STREAMING PROVIDER.
WE ARE HUGE BIG COMPANY.
ONLINE RADIO SETUP FOR YOUR FM STATION ONLINE.
FOR YOUR ONLINE RADIO – Also for Your Media , FM Station, Church or As well as online Internet Radio Station.
We do it profectional.Its is your dream to set up an online radio station that will turn you into a major media hub in this country and the world as well as to enable promote your goods and services Globally.Then contact us immediately at email@example.com or call us 004915218034976 OR 004917648327355 – 0023354294897
We are running an express and affordable online radio set up for all.
Contact us and have a feel of what it feels to own an online radio and what we have for you.
Call or Whats App 004915218034976 NOW
THE ONLINE RADIO STATION DEVELOPED BY GHANAMEDIAWORLD.COM
CONTACT OUR E-MAIL ADDRESS firstname.lastname@example.org
SHARE OUR PAGE AND LIKE US IN FACEBOOK,INSTAGRAM,WHATSAPP,PINTEREST,YOUTUBE,LINKEDIN.
WE ARE NUMBER ONE TRUELY MEDIA.