My point is that no matter what you tell the OS, there will still be one more de... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

triactual on March 12, 2023 | parent | context | favorite | on: The threat on your desk: Building an evil USB-C do...

My point is that no matter what you tell the OS, there will still be one more device connected than expected. If you plug in a keyboard and two are suddenly connected, it’s still very noticeable. This counting problem is occurring at the hardware level in the USB hubs and host. The attacker needs to compromise an external hub to behave like a USB protocol analyzer capable of intercepting and modifying data seamlessly in order for an attack like this to be anything other than trivially detectable. Fitting something like that into an existing enclosure means writing lots of low level code and embedded hardware design which is a different level of difficulty.

fbdab103 on March 12, 2023 [–]

I was thinking more man-in-the-middle, not a sidecar device. Obviously more technically challenging to accomplish, but far harder to detect.

triactual on March 17, 2023 | [–]

Sorry, I think I misunderstood your original comment - we’re having the same thought with MITM. Definitely more technically challenging but much harder to detect.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact