MG's Mr Self Destruct project takes the USB Killer to new levels, combining a $1.50 system-on-a-chip with a variety of payloads: smoke bombs, "sound grenades," and little explosives, cleverly choreographed with keystroke emulation, allowing the poisoned drive to first cause the connected computer to foreground a browser and load a web-page that plays an appropriate animation (a jack-in-the-box that plays "Pop Goes the Weasel" with the drive's explosive detonating for the climax).
The accompanying project log is full of hilariously, ominously damaged boards from failed prototypes, giving you a sense of exactly how wrong things can go when you plug a strange USB drive into your system. Expect lots of Hollywood threats and Youtuber pranks.
When presented as an exploding or smoke-emitting USB drive, there isn’t much in the way of practical use besides a tv/movie prop for a dramatic hacker scene. They sure do make for a good PoC video though! However, there are a lot of opportunities to adjust the physical payload. Example: If you used a battery powered “sound grenade” as the physical payload, you could retain the Pavlovian Awareness Training angle here that many Read Teams are immediately seeing. When plugged in, the keystroke injection does whatever you wish, then a loud siren would trigger that cannot be turned off until the battery dies. This is possible because the software controls a switch capable of handling as much power as your USB port can provide. So there are many small circuits that could be used here. If you can utilize a bigger package size, such as a 2.5" removable, then the options are even greater. This would work well for large battery powered devices. Example: a wifi attack device (cracking, jamming, etc) that only starts using its battery once it has been brought comfortably inside the physical target area.
Mr. Self Destruct [MG/Medium]
Information security firm Bishop Fox's "Cybersecurity Style Guide" is 92 pages' worth of usage notes from the confusing world of technical jargon, a combination of glossary, pronunciation guide and style manual (in the manner of the jargon file), and includes the notation that "cyber-" is an ill-advised prefix.
New Jersey State Senator Jeff Van Drew wants to run for Congress as a Democrat; he visited 17-year-old Emily McGrath's school, Egg Harbor Township High, where McGrath questioned him about whether he'd taken money from the NRA; Van Drew said he hadn't, and he was lying.
The late, lamented Scottish writer Iain Banks (previously) was several kinds of writer, but one of his main claims to fame is his role in developing the idea of fully automated luxury communism, in his beloved Culture novels, a series of wildly original space operas about a post-singularity, post-scarcity cooperative galactic civilization devoted to games, […]
Surfing on public Wi-Fi is convenient, but it’s far from safe. Whether you’re at a cafe or hotel, connecting to an unsecured network exposes you—and your personal information—to a host of hazards, including hackers, government spies, and trackers. Private Internet Access helps you navigate past these risks and tap into a safer, restriction-free internet, and […]
The web is vast, and while there’s room for everyone, competition is stiff when it comes to landing on that first page of a Google search. That’s why developers aren’t afraid to spend exorbitant amounts of time and money on search engine optimization (SEO) to ensure their sites rank higher than others. However, not all […]
Many of us enjoy the aesthetic of vintage electronics, but trying to use most hardware from the 1950’s isn’t necessarily practical. This is especially true where speakers are concerned. While most of us can appreciate the old-school feel of retro speakers, they have a hard time matching the convenience and power delivered by today’s Bluetooth speakers. […]