this post was submitted on 02 Dec 2023
439 points (95.6% liked)

Technology

59347 readers
5045 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
439
Boffins convert typing sounds into text with 95% accuracy (www.theregister.com)
submitted 11 months ago by [email protected] to c/[email protected]
147 comments fedilink hide all child comments
 

Researchers in the UK claim to have translated the sound of laptop keystrokes into their corresponding letters with 95 percent accuracy in some cases.

That 95 percent figure was achieved with nothing but a nearby iPhone. Remote methods are just as dangerous: over Zoom, the accuracy of recorded keystrokes only dropped to 93 percent, while Skype calls were still 91.7 percent accurate.

In other words, this is a side channel attack with considerable accuracy, minimal technical requirements, and a ubiquitous data exfiltration point: Microphones, which are everywhere from our laptops, to our wrists, to the very rooms we work in.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 11 months ago (1 children)

You don’t need physical access, just some malware that has access to the microphone

We would hope researchers “discovering” this wouldn’t have a production ready product as their proof of concept. So there is room from improvement but military contractors would love to invest in this

[–] [email protected] 7 points 11 months ago (1 children)

You don’t need physical access, just some malware

Which you still need to have previously installed...

If the person has allowed malware to be installed just install a keylogger (which gives you 100% accuracy every time) rather than jump through more hoops with this.

[–] [email protected] 4 points 11 months ago (1 children)

Different devices

I would have an easier time infecting someone‘s personal phone than a company machine

[–] [email protected] -1 points 11 months ago (1 children)

You would, would you?

Well, I must be talking to a leet hacker then.

Ok, install malware on my phone.

[–] [email protected] 3 points 11 months ago (1 children)

How did you get that from what I said?

[–] [email protected] -1 points 11 months ago* (last edited 11 months ago) (1 children)

I would have an easier time infecting someone‘s personal phone than a company machine

What did you mean by this then other than you, personally, are skilled at such things and have system penetration experience?

[–] [email protected] 3 points 11 months ago* (last edited 11 months ago)

Easier doesn’t mean easy but I can send you an email/give you a link

The company email server should block it and the firewall should block the website

Sample

Check out this game! https://play.google.com/store/apps/details?id=com.robtopx.geometrydashsubzero

But the page is actually

https://play.giggle.com/store/apps/details?id=com.robtopx.geometrydashsubzero

Knowing this doesn’t make me 1337