Wireless mouse and keyboard alarms: may be hacked




Wireless mouse and keyboard alarms
MouseJack is a class of vulnerabilities that affects the vast majority of wireless, non-Bluetooth keyboards and mice

Computer researcher Marcus Mengs has discovered security flaws that affect wireless keyboards and mice and endanger our data

If you have a wireless mouse or keyboard then be very careful: they could become the front door for viruses or malware and in a few minutes a hacker could use them to enter your PC and steal all your data , as well as destroy them.

The alarm comes from the researcher Marcus Mengs, who explains how the problem lies mainly in some security flaws of the dongle (the small USB key used to send input from mice and keyboards, but also pointers for presentations and other devices). Although the flaw was found on Logitech devices, it would be a generalized alarm, not related to a specific product or brand: Meng did not do specific tests, but also other wireless pointing devices, equipped with the same chip but produced by other brands , they could be vulnerable.

Wireless mouse and keyboard alarms

Because wireless mice and keyboards are dangerous

Mengs found that during the pairing phase between the pointing device and the dongle, a hacker could get in the way and enter our system. At that point he could do anything: send us viruses or steal data, for example. The vulnerabilities found by Marcus Meng are a total of seven and not for all there is already a security patch.

The indicted dongles

According to Mengs the vulnerabilities have an impact on all Logitech USB dongles that use the proprietary 2.4 GHz ” Unifying ” radio technology , whose first version dates back to 2009. The dongles are often found with wireless keyboards, mice, clickers for presentations and trackballs.

The 2016 MouseJack

It is not the first time that security flaws are discovered in wireless dongles for pointing devices. Already in 2016 another researcher, Marc Newlin, discovered the vulnerability that then became famous with the name of “MouseJack”. It was a flaw very similar to those discovered by Marcus Meng, a sign that the wireless connection applied to mice and keyboards can be very dangerous. Also because, and this is particularly serious, Mengs has discovered that in the market there are still devices vulnerable to the MouseJack of 2016. And this, as will be understood, multiplies the number of potentially attackable devices.