EM Eye investigates a cybersecurity attack where the attackers eavesdrop on the confidential video data of cameras by parsing the unintentional electromagnetic leakage signals from camera circuits. This happens on the physical/analog layer of camera systems and thus allows attackers to steal victim’s camera data even when perfect software protections (e.g., unbreakable passwords) are all in place. Exploiting the eavesdropped videos, attackers can spy on privacy-sensitive information such as people’s activities in an enclosed room recorded by the victim’s home security camera. […]

Paper.

  • potatopotato@sh.itjust.works
    0·
    11 months ago

    It’s just a tempest attack. Firmware won’t fix anything but the attack is an extremely expensive nation state level operation that doesn’t scale.

    • tavu@sopuli.xyzOP
      1·
      11 months ago

      […] the attack is an extremely expensive nation state level operation that doesn’t scale.

      About $250 at most. Quoting the linked page:

      Below is a list of equipment we used for the experiments.

      • (1) Software Defined Ratio (SDR): Ettus USRP B210 USRP, ~$2100.
      • (2) Low Noise Amplifier (LNA): Foresight Intelligence FSTRFAMP06 LNA, ~$200.
      • (3) Directional Antenna: A common outdoor Log-periodic directional antenna (LPDA), ~$15.
      • (4) A laptop, of course.

      Note that the equipment can be replaced with cheaper counterparts. For example, USRP B210 can be replaced with RTL-SDR that costs ~$30.

      To reproduce the attack: our GitHub repository provides the codes and instructions for reproducing and understanding the attack. We have prepared a ready-to-use software tool that can produce real-time reconstructions of the eavesdropped videos with EM signal input from the USRP device.