Tag Archive for: mouse

Invisible Drones and Mouse Jack Exploit Computer Security

/in


In an era where technological advancements seemingly know no bounds, a new breed of cyber threats has emerged, utilizing the power of invisible drones and the sneaky technique known as Mouse Jack. These covert infiltrators pose a grave risk to computer security, breaching systems with lightning speed and precision. The drones, capable of maneuvering where humans cannot, silently fly through fortified perimeters, entering buildings through open windows, and wreaking havoc on computer networks. With the aid of the Mouse Jack vulnerability, hackers can exploit wireless adapters found in numerous devices, using forged signals to gain unauthorized access to computers within a matter of seconds.

The use of drones in hacking operations provides a distinct advantage over traditional methods. Their small size and agility enable them to bypass physical barriers and swiftly navigate to targeted areas, often going unnoticed. By leveraging zero-click attacks like Mouse Jack, these drones execute their mission seamlessly without interrupting their flight. This technique targets the wireless adapters of widely-used devices such as mice and keyboards, taking advantage of the unsafe wireless radio interface of the NRF 24L chip. Unbeknownst to many users, this vulnerability allows hackers to forge signals, imitating legitimate devices and granting them undetectable access to their victims’ computers.

NRF 24L Module

To combat this rising threat landscape, the importance of robust anti-fraud solutions cannot be overstated. Companies like Samsung have recognized the exponential growth in cybercriminals’ capabilities and sophistication, developing comprehensive compliance solutions to protect businesses and their reputations. These solutions combine various cutting-edge technologies, including transaction monitoring, email and phone verification, anti-fraud systems, and pixel analysis. By investing in these proactive measures, individuals and organizations can fortify their defenses against unseen threats, securing their digital lives in an increasingly interconnected world. It is imperative that we remain vigilant and embrace advancements responsibly, while actively safeguarding ourselves against the shadowy…

Source…

Dell Alienware AW950 RGB Gaming Mouse – (16K DPI, 16.8M Colors, 250 IPS, 7 LEDs) – Unboxing

/in



Razer to fix Windows installer that grants admin powers if you plug in a mouse • The Register

/in


In brief Razer is working on an updated installer after it was discovered you can gain admin privileges on Windows by plugging in one of the gaming gear maker’s mice or keyboards.

In fact, inserting any USB device that declares itself a Razer mouse or keyboard will lead to an exploitable situation.

As documented late last week by a Twitter user called j0nh4t, if you plug into a Windows 10 or 11 machine a device identified as a Razer mouse or keyboard, Microsoft’s OS will automatically download and run Razer’s installer for the manufacturer’s Synapse software, which can be used to configure the peripheral.

During the installation process, which runs at the System level, you can spawn a Powershell terminal from an Explorer window that runs with these high-level privileges. Thus, you can gain local admin access on a machine, if you can login in somehow and plug in a gadget – useful for penetration testing, at least. It is also possible to tell the installer to use a user-controlled folder to store an executable that is run on every boot, which can be hijacked by a rogue user.

The bug finder said they had no luck in getting Razer’s attention when trying to report these flaws, and after they put a zero-day exploit for the Powershell hole on Twitter, the manufacturer got in touch and offered a vulnerability bounty. A new version of the installer to address these problems is being prepared for release, we’re told. We wonder how many Windows installers have these same weaknesses.

A spokesperson for Razer told us today: “We were made aware of a situation in which our software, in a very specific use case, provides a user with broader access to their machine during the installation process.

“We have investigated the issue, are currently making changes to the installation application to limit this use case, and will release an updated…

Source…

Unpatched Bug in WiFi Mouse App Opens PCs to Attack – Threatpost

/in



Unpatched Bug in WiFi Mouse App Opens PCs to Attack  Threatpost

Source…