Pentashagon comments on Open thread for December 17-23, 2013 - Less Wrong

5 Post author: ciphergoth 17 December 2013 08:45PM

You are viewing a comment permalink. View the original post to see all comments and the full post content.

Article Navigation

Comments (301)
Tags: open_thread

Comments (301)

You are viewing a single comment's thread. Show more comments above.

Comment author: RolfAndreassen 20 December 2013 03:45:53AM 1 point [-]

Eh... if an attacker has the level of physical access to the CPU that's required to plant a microphone, you have worse problems than acoustic attacks.

Comment author: Pentashagon 20 December 2013 04:52:02AM 8 points [-]

For personal devices the attacker may have access to the microphone inside the device via flash/java/javascript/an app, etc.

Comment author: Lumifer 20 December 2013 05:46:58AM 1 point [-]

If the attacker can run code on your device, a keylogger is a much simpler solution.

Comment author: Pentashagon 20 December 2013 06:06:19AM 2 points [-]

I think it is probably simpler to enable the microphone from a web or mobile application than to install a keylogger in the OS. But then if you consider acoustic keyloggers...

Comment author: ChristianKl 20 December 2013 03:21:56PM 0 points [-]

With an acoustic keylogger you could scoop the my KeePass password but the actual passwords that I use to log into websites.

Comment author: Baughn 21 December 2013 11:11:27PM 1 point [-]

Not if it's sandboxed, but then timing and other side-channel attacks are still easier than using the mike.

Powered by Reddit Powered by Reddit