0

This $5 Device Can Take Over a Computer—Even If It’s Locked #piday #raspberrypi @Raspberry_Pi

NewImage

PoisonTap from Samy Kamkar has set the internet abuzz with it’s hacking abilities. If you want to learn more about turning your Pi Zero into a USB Gadget, check out our learn guide here. From Gizmodo:

Samy Kamkar just released his latest hacking cre ation, and it is terrifying. Dubbed “Poison Tap,” Kamkar’s new home brew device allows someone to plant a backdoor on a computer in just one minute, even when the device is locked.

Kamkar’s method for installing the backdoor is unconventional and totally ingenious. Poison Tap targets the victim’s browser cache and injects the malicious code there. Traditionally, attacks would attempt to install malware onto the computer, but by instead going after the browser cache, Poison Tap can bypass some security measures and anti-virus software.

Poison Tap’s software runs off of a a microSD card inserted into a $5 Raspberry Pi. Once it is plugged in, Poison Tap acts as if it was Ethernet to USB device and its setting make it so that the computer begins to send network traffic to Poision Tap, hijacking all network traffic. From there, it “siphons and stores” cookies and session from the web browser of just about every website. Then Poison Tap gains access to the computer’s internal router, and it’s game over. An attacker can now remotely send code to the victim’s computer via the web. Once Poison Tap is unplugged, the backdoor stays on the computer, allowing an attacker essentially unmitigated access to the victim’s computer.

Read more.


2358Each Friday is PiDay here at Adafruit! Be sure to check out our posts, tutorials and new Raspberry Pi related products. Adafruit has the largest and best selection of Raspberry Pi accessories and all the code & tutorials to get you up and running in no time!


Make a robot friend with Adafruit’s CRICKIT – A Creative Robotics & Interactive Construction Kit. It’s an add-on to our popular Circuit Playground Express, FEATHER and other platforms to make and program robots with CircuitPython, MakeCode, and Arduino. Start controlling motors, servos, solenoids. You also get signal pins, capacitive touch sensors, a NeoPixel driver and amplified speaker output. It complements & extends your boards so you can still use all the goodies on the microcontroller, now you have a robotics playground as well.

Join 7,500+ makers on Adafruit’s Discord channels and be part of the community! http://adafru.it/discord

CircuitPython in 2018 – Python on Microcontrollers is here!

Have an amazing project to share? Join the SHOW-AND-TELL every Wednesday night at 7:30pm ET on Google+ Hangouts.

Join us every Wednesday night at 8pm ET for Ask an Engineer!

Follow Adafruit on Instagram for top secret new products, behinds the scenes and more https://www.instagram.com/adafruit/


Maker Business — Fewer startups, and other collateral damage from the 2018 tariffs

Wearables — Light as a Worbla feather

Electronics — How to make your own magnetic field probe!

Biohacking — The State of DNA Analysis in Three Mindmaps

Python for Microcontrollers — One year of CircuitPython weeklies!

Get the only spam-free daily newsletter about wearables, running a "maker business", electronic tips and more! Subscribe at AdafruitDaily.com !



No Comments

No comments yet.

Sorry, the comment form is closed at this time.