Stealing login credentials from a locked PC or Mac just got easier
20 seconds of physical access with a $50 device is all it takes.
20 seconds with a USB computer and a physical machine can be p0wned.
Stealing login credentials from a locked PC or Mac just got easier
20 seconds of physical access with a $50 device is all it takes.
20 seconds with a USB computer and a physical machine can be p0wned.
I’m a groovy cat who’s into technology, Eastern Thought, and house music. I’m a proud and dedicated father to the coolest little guy on the planet (seriously, I'm NOT biased). I’m fascinated by ninjas, the Internet, and anybody who can balance objects on their nose for long periods of time.
I have a utility belt full of programming languages and a database of all my knowledge on databases... I practice code fu. Oh, I've also done actual Kung Fu, and have a black belt in Tae Kwon Do.
I run. I meditate. I dance. I blog at PaulSpoerry.com, tweet @PaulSpoerry, and I'm here on Google+.
I'm currently work for IBM developing web enabled insurance applications for IBM and support and develop a non-profit called The LittleBigFund.
This site uses Akismet to reduce spam. Learn how your comment data is processed.
Steve Vance says
That's really crappy and very scary. I'm wondering how Microsoft is going to patch this, will they only allow hardware authentication once the login has been successful but with a bunch of prompts stating hardware has been plugged/unplugged since you locked the computer.
Paul Spoerry says
It's not just Windows… OSX too apparently. I've always been of the mindset that if I can get physical access to your device I can get whatever I want. This just shows an insanely easy way to go about it.
Joca God says
If you can get inside my house I'm not worry about my pc….. just saying!
Thomas Deters says
I don't even have a password so.. yeah
Victor Lawless says
administrator…we know you well. we can see you through the 'window'''…welcome to 'our' computer….lol
Victor Lawless says
who is the real 'administrator'?
Paul Spoerry says
Given the things on my network I'm more concerned for my pc. I mean seriously take my TV… the photos of my kid when he was 2 I cannot replace (yes yes… I pay for Crashplan and back them up but that's not the point for this discussion hehehe)
Steve Vance says
+Paul Spoerry I think it actually is relevant. I know I rely on the fact that yes, someone could physically take my computer but they'd never be able to log in and screw with my stuff, not the case anymore.
Would I be pissed and devastated my hardware would be gone, absolutely. Would I be ruined if my digital presence was nuked, yup.
Hopefully, this is patched on both sides of the OS fence and some protections are put in place software wise such as maybe crashplan locks if your desktop suddenly goes to another network that you've never been on.
RED Spy says
Haven't read the article. I guess it's okay for most of us because they have to have your laptop/PC? Unless your house got burgled then… ur fugged
Joca God says
Just invert the polarity in the usb! I did that on my car so you cannot hack my car via obd port!