MAGNETO: Covert Channel between Air-Gapped Systems and Nearby Smartphones via CPU-Generated Magnetic Fields
read the original abstract
In this paper, we show that attackers can leak data from isolated, air-gapped computers to nearby smartphones via covert magnetic signals. The proposed covert channel works even if a smartphone is kept inside a Faraday shielding case, which aims to block any type of inbound and outbound wireless communication (Wi-Fi, cellular, Bluetooth, etc.). The channel also works if the smartphone is set in airplane mode in order to block any communication with the device. We implement a malware that controls the magnetic fields emanating from the computer by regulating workloads on the CPU cores. Sensitive data such as encryption keys, passwords, or keylogging data is encoded and transmitted over the magnetic signals. A smartphone located near the computer receives the covert signals with its magnetic sensor. We present technical background, and discuss signal generation, data encoding, and signal reception. We show that the proposed covert channel works from a user-level process, without requiring special privileges, and can successfully operate from within an isolated virtual machine (VM).
This paper has not been read by Pith yet.
Forward citations
Cited by 2 Pith papers
-
("Oops! Had the silly thing in reverse")---Optical injection attacks in through LED status indicators
LED status indicators on microcontrollers can act as optical receivers, enabling data injection attacks with bandwidth approaching 1 Mbit/s under realistic compromise conditions.
-
CTRL-ALT-LED: Leaking Data from Air-Gapped Computers via Keyboard LEDs
Malware can exfiltrate data from air-gapped computers by modulating keyboard LED lights at rates up to 3000 bits per second with light sensors or over 120 bits per second with smartphone cameras.
discussion (0)
Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.