Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Software Allows Hackers to Activate MacBook Webcams Without Green Warning Light
A recently resolved criminal case shows how a man was able to hack a high school classmate's laptop in order to take nude photographs with her computer's camera without her knowledge, before attempting to use the images to extort her, reports The Washington Post.
Though Apple's FaceTime camera is designed to always illuminate the adjacent green light at the top of the screen, software has been written to separate the camera and light hardware, allowing both illegal -- and legal, the FBI has used similar software in criminal investigations -- ways.
In the older vulnerability described in the Johns Hopkins study, the software bypasses a hardware interlock that the camera uses in an attempt to ensure the indicator light illuminates whenever the camera is active. It is not known precisely which software package the defendant in the case used to compromise his classmate's computer, but the Hopkins study is the first public confirmation that Apple's camera system can be compromised.
The easiest way for users to protect themselves -- aside from standard security protocols like not downloading strange applications, or allowing untrusted people access to the computer -- is to put a small piece of tape across the camera.
Though Apple's FaceTime camera is designed to always illuminate the adjacent green light at the top of the screen, software has been written to separate the camera and light hardware, allowing both illegal -- and legal, the FBI has used similar software in criminal investigations -- ways.
While controlling a camera remotely has long been a source of concern to privacy advocates, conventional wisdom said there was at least no way to deactivate the warning light. New evidence indicates otherwise.A pair of students at Johns Hopkins examined Apple's webcam indicator [PDF] and discovered both how to disable the LED indicator, and a way to modify OS X's kernel to keep nefarious users from taking control of the LED. The vulnerability they described does not work on Macs built after 2008, but it is likely that similar hacks exist for newer machines.
Marcus Thomas, former assistant director of the FBI’s Operational Technology Division in Quantico, said in a recent story in The Washington Post that the FBI has been able to covertly activate a computer’s camera — without triggering the light that lets users know it is recording — for several years.
In the older vulnerability described in the Johns Hopkins study, the software bypasses a hardware interlock that the camera uses in an attempt to ensure the indicator light illuminates whenever the camera is active. It is not known precisely which software package the defendant in the case used to compromise his classmate's computer, but the Hopkins study is the first public confirmation that Apple's camera system can be compromised.
The easiest way for users to protect themselves -- aside from standard security protocols like not downloading strange applications, or allowing untrusted people access to the computer -- is to put a small piece of tape across the camera.
[ 184 comments ]
Top Rated Comments
(View all)
74 months ago
(...putting pants back on...)
If someone wants to see me with my pants off, that's THEIR problem.
74 months ago
I would be A LOT more worried about someone accessing my HDD than my webcam. What are you people doing that you are so worried about being recorded? Do you also not go out in public?
umm..errrr...ummmm
Giggity..Giggity
74 months ago
yup; taping up my camera's now, just in case. The age of internet was nice, up 'til now. I'm not sure how all these revelations don't lead up to a massive protest overthrowing or atleast disrupting your government. It's like boiling frogs...
74 months ago
I wonder if they've changed the design since 2008. I was under the impression that the LED is on the path to power the camera. In other words, they're wired together in a way that you can't send power to the camera without powering on the LED first.
But that would make it impossible for the government to spy on you without your knowledge.
74 months ago
I wonder if they've changed the design since 2008. I was under the impression that the LED is on the path to power the camera. In other words, they're wired together in a way that you can't send power to the camera without powering on the LED first.
74 months ago
Another case of software being a poor substitute for a hardware solution.
Per the article, they substituted their own firmware to the microprocessor responsible for the interlock. Thus calling it a hardware interlock is a bit misleading. If it really was tied to the power rail for the sensor there wouldn't be a way to bypass that. (Though if you could pulse it on and off quickly enough, someone might not notice.)
B
In the older vulnerability described in the Johns Hopkins study, the software bypasses a hardware interlock that the camera uses in an attempt to ensure the indicator light illuminates whenever the camera is active.
Per the article, they substituted their own firmware to the microprocessor responsible for the interlock. Thus calling it a hardware interlock is a bit misleading. If it really was tied to the power rail for the sensor there wouldn't be a way to bypass that. (Though if you could pulse it on and off quickly enough, someone might not notice.)
B
[ Read All Comments ]
Earlier this summer, Mophie announced and launched a new line of Juice Pack Air cases for the iPhone XS and XS Max, which promise to add extra hours of battery life to your iPhone while providing...
After offering a look at its upcoming streaming service Disney+, and announcing a bundle with ESPN+ and Hulu, Disney today confirmed the devices that will support Disney+ at launch. For Apple device...
Spotify is launching a new content filter feature for its Family Plan to give parents and guardians better control over what their children listen to.
The owner of the family plan master...
More details have emerged about the unreleased portable Bluetooth speaker from Sonos, thanks to new images shared by WinFuture (via The Verge).
The German site has published several marketing...
Version 17 of Ulysses was released today, bringing some much-requested features to the popular Mac and iOS app for writers.
First up, the developers have brought keyword management to the iOS...
Apple today sent out emails to customers about its latest Apple Pay promo, which will see the company donating $10 to the National Park Foundation for Apple Pay purchases made from the Apple...
We're just a few weeks away from the unveiling of this year's iPhone lineup as well as the official release of iOS 13 and Apple's other new operating system versions, and we're...
For this week's giveaway, we've teamed up with RAVPower to offer MacRumors readers a chance to win a 61W USB-C Power Adapter and a USB-C to Lightning cable, which can be used to fast charge...
