The driver would take exclusive control of the USB HID device, and create its own virtual mouse device. One oddity I remember of that mouse is that the mouse itself was a very dumb device, and most functionality was implemented in the device driver running on the host computer. Maybe their quality is better now, but I don’t really care. The scrollwheel of the one Razer Deathadder mouse I ever bought crapped out after less than a year, and the side buttons started glitching too. Posted in News Tagged admin, exploit, mouse, power shell, Razer, system, vulnerability, windows, Windows Update Post navigation Also remember that some attacks don’t required physical or network access at all, like this one which remotely sniffs keystrokes from a wireless keyboard with less than stellar security, also coincidentally built by Microsoft. In the meantime, we recommend not allowing strangers to plug any devices into your personal computers as a general rule, or plugging in anything where its origins are unknown. Others have confirmed the exploit does in fact work, so hopefully there is a patch released soon that solves the issue. While originally tried to let the company know, they weren’t responsive until he made the exploit public on Twitter, and are now apparently working on solving the issue. The installation is run with admin privileges, and a Power Shell can be opened by the user simply by pressing Shift and right-clicking the mouse. Apparently plugging in a Razer mouse automatically launches Windows Update, which installs a driver for the mouse. While slightly comforting in that an attacker would need physical access to the device rather than simple network access, it is very concerning how simple this attack is otherwise. The latest Windows 10 exploit, discovered by, is almost comically easy too, and involves little more than plugging in a mouse. Sure, there are some viruses and issues with Linux distributions but by far most of the exploits target Windows, if only because more people use it daily than any other operating system. While not the exact wording from Animal Farm, the saying does have plenty of merit nonetheless. As the common saying goes, “all networked computers are vulnerable to exploits, but some networked computers are more vulnerable than others”.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |