MOSQUITO attack allows to exfiltrates data from Air-Gapped computers via leverage connected speakers

MOSQUITO is new technique devised by a team of researchers at Israel’s Ben Gurion University, led by the expert Mordechai Guri, to exfiltrate data from an air-gapped network.

The technique leverage connected speakers (passive speakers, headphones, or earphones) to acquire the sound from surrounding environment by exploiting a specific audio chip feature.

The MOSQUITO technique establishes a covert ultrasonic transmission between two air-gapped computers using speaker-to-speaker communication.

The experts shared two video proof-of-concept videos that show two air-gap computers in the environment that were infected with a malicious code developed by the experts.

Researchers were able to exchange data over an air-gap computer from a distance of eight meters away with an effective bit rate of 10 to 166 bit per second.

Further info on the technique is included in the research paper,

Past research conducted by Ben-Gurion researchers related to the hack of air-gapped networks are:

• aIR-Jumper attack exfiltrates sensitive data from air-gapped computers using security cameras with Infrared capabilities.
• USBee exfiltrates sensitive data from air-gapped computers using radio frequency transmissions from USB connectors.
• DiskFiltration steals sensitive data using acoustic signals emitted from the hard disk drive (HDD) of air-gapped computers.
• BitWhisper that is based on the heat emissions and built-in thermal sensors.
• AirHopper exfiltrates sensitive data from air-gapped computers security cameras and infrared.
• Fansmitter exfiltrates sensitive data from air-gapped computers exploiting noise emitted by a computer fan to transmit data.
• GSMem attack relies on cellular frequencies.

Pierluigi Paganini

(Security Affairs – MOSQUITO technique, air-gapped network)

[adrotate banner=”5″]

[adrotate banner=”13″]