- Feb 4, 2016
- 2,520
- Content source
- https://wccftech.com/evil-maid-attack-firmware-backdoor/
We have seen several stories of journalists, politicians and other targets talking about having their machines hacked inside hotel rooms. These type of attacks (known as an “evil maid attack) are so popular for scenarios where attackers have physical access to the device that Edward Snowden went ahead to create a free tool to secure your devices when you have to leave your devices in a hotel room, even if for just a few minutes.
These attacks don’t need a lot of time since anyone with physical access, the right tools, and some skills can break into a room to install malware that is nearly impossible to detect. In an effort to raise awareness around the issue, security researchers have shared a demo video showing how easy these attacks are to pull off.
Researchers wrote that the ease and “tools and techniques make firmware rootkits accessible to non-experts, even a ‘script kiddie’,” ensuring that even not-so-experts can install a firmware backdoor on a laptop in a few minutes.
While this type of an “evil maid attack” takes someone to have physical access to your laptop, it’s not such a difficult feat as many believe. Spies, security researchers, and politicians aren’t the only targets. The ease and availability of these tools enable everyone – even your friends and foes – to get access to your devices. However, to get access to your devices, the attacker does need to learn about your whereabouts and when exactly you are out of your hotel room. Suddenly those Instagram vacay pics no longer look so harmless…