Strange New Attack Lets an Intruder Gain Access Through a Mouse Dongle

Feb 24, 2016

New intrusion technique affects most non-Bluetooth wireless mice

Researchers at Bastille Networks have discovered a flaw in some keyboard and mouse dongles that could allow an attacker located within 100 meters of the computer to execute commands on the system through the dongle. The computer receives the commands as if they were typed by the user sitting at the system.

The “Mousejack” attack capitalizes on a gap in the security of non-Bluetooth mice and keyboards from seven different vendors that use Logitech’s Unifying wireless USB technology. According to Bastille, “Once paired, the Mousejack operator can insert keystrokes or malicious code with the full privileges of the PC owner and infiltrate networks to access sensitive data. The attack is at the keyboard level, therefore PCs, Macs, and Linux machines using wireless dongles can all be victims.”

The Bastille Networks website has a dramatic video showing how the attack works. See the article at the Threatpost site for additional information.
 

Related content

  • Detecting Intruders Intro

    If you think your systems are too obscure for an attacker to worry about, think again. Today’s intruders are happy for any victim.

  • Ask Klaus!

    Changing default applications, switching BIOS settings for newer distros, running an old Windows application in VirtualBox with a security dongle, and Live distro security with an overlay file.

  • Security Intro
  • Bluetooth Headsets

    We’ll show you how to set up support for a Bluetooth stereo headset.

  • Bluetooth Hacks

    The user rules in Linux – if you know where you’re going. This month the trail leads deep into the Linux Bluetooth stack.

comments powered by Disqus
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters

Support Our Work

Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.

Learn More

News