Symantec have uncovered a new form of security attack targeted towards users that use wireless keyboards.

The warning follows the release of Keykeriki, an open-source ’sniffer’ project that allows users to remotely decode wireless transmissions.  Symantec said that this effectively creates a new type of key-logger that could be used by cyber-criminals to steal sensitive data such as user names, passwords and bank details.

Symantec warned that, although the creator’s intentions appear honourable, making the software code and hardware schematics open to everyone means that criminals could use the software to eavesdrop on wireless keyboard inputs.  The criminals would not have to install anything on the host system, but would simply have to be in range of the keyboard’s wireless signal.  Remote-exploit.org claimed that it has plans for add-on modules that include an LCD display and an interface that works with an iPhone.

Symantec said that future wireless keyboards should introduce encrypted communication between the device and the receiver, and warned those working on office or public computers to resort to wired keyboards for the time being.

This entry was posted on Wednesday, June 10th, 2009 at 5:05 pm and is filed under News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.