Researchers created a malware program that regulates CPU load and core frequency in a particular manner to make the power supplies on air-gapped computers emanate electromagnetic radiation on a low-frequency band (0 \u2013 48 kHz). <\/p>\n\n\n\n While the attack requires at least one instance of physical access to install the malware, such attacks have happened. Examples include the Stuxnet worm<\/a> in Iran’s uranium enrichment facility at Natanz, Agent.BTZ<\/a> that infected a U.S. military base, and the Remsec modular<\/a> backdoor that collected information from air-gapped government networks for over five years.<\/p>\n\n\n\n Mordechai Guri explains the primary source of electromagnetic radiation in switched mode power supplies is due to their internal design and switching characteristics in the\u00a0technical paper<\/a>. \u201cIn the conversion from AC-DC and DC-DC, the MOSFET switching components turning on or off at specific frequencies create a square wave,\u201d the researcher details. The electromagnetic wave can carry a payload of raw data, following a strain of eight bits that signify the beginning of the transmission. <\/p>\n\n\n\n The attack works against air gapped pc’s, laptops, and even a raspberry pi. The receiver can be as simple as a cell phone. <\/p>\n\n\n\n Definitely worth a read.<\/p>\n\n\n\n Links:<\/p>\n\n\n\n “Air gapping” is a security measure that involves a computer being physically isolated and incapable of connecting wirelessly or physically with other computers or network devices. It’s used in high security setups. The idea is that if the system is physically incapable of connecting to other systems or networks, it should be safe. Right? A new attack method named COVID-bit uses electromagnetic waves from power supplies to transmit data from air-gapped systems. Using this attack, even if the computer is…<\/p>\n![\"\"](\"https:\/\/i0.wp.com\/mattfife.com\/wp-content\/themes\/mattTheme\/headerimgs\/2022\/12\/image.png?resize=640%2C244&ssl=1\")
<\/figure>\n\n\n\n\n