Wireless keyboards and mouse kits allow physical attackers to hijack computers read more at here www.spinonews.com/index.php/item/1387-wireless-keyboards-and-mouse-kits-allow-physical-attackers-to-hijack-computers

Ruxcon Wireless keyboard and mouse manufacturers including Microsoft, Fujitsu, and Logitech have been forced to fix obstructed encryption in peripherals that allow physical attackers to hijack computers.

Researchers and PHDs Gerhard Klostermeier and Matthias Deeg with Germany-based security firm SySS tested five devices badged as secure.

Klostermeier demonstrated how each test subject permitted keystroke injection, mouse spoofing, replay attacks, and all but the Logitech set up had lax code protections.

The keyboard and mouse devices cannot be patched in existing products so four of the five vendors committed to fixing the bugs in newer editions.

Some vendors did not respond to Klostermeier's and Deeg's private disclosures. While remaining vendors played down some attacks and promised some fixes for upcoming products. Microsoft will fix replay attacks, will assess insufficient code protections, but will not shutter a mouse spoofing vector which it says is a feature, not a bug.

The duo wrapped the attacks into a tidy Raspberry Pi "Radio Hack Box", it will allow attackers to spoof keyboard and mouse inputs for remote code execution, and use replay attacks to steal cleartext keystrokes, so attackers can look for login credentials.

Klostermeier says the attack could be amplified with radio equipment to extend the keyboard and mouse attack from 15 meters to several kilometers. The normal distance is 10 to 15 meters, but if you use software defined radio and apply some antenna you could extend it for several kilometers.

Klostermeier's and Deeg's attack uses an internal Python tool that inputs keystrokes into the command using the inbuilt Windows virtual keyboard to run attack commands.

Researchers release a proof-of-concept video demonstrating the attack against the Microsoft Wireless Desktop 2000 which they say can be sped up to reduce time to compromise.