Stealing data through a computer cooler? Attack Fansmitter

Security above all, what can we say about information security. Experts at Ben-Gurion University (Israel) have for several years been developing ways to steal data from physically isolated computers. In 2015, they demonstrated the BitWhisper attack, which, thanks to the heat, makes it possible to get information from systems that are not connected to the Internet. That is, it is possible to transfer data between isolated systems using thermal excretions of a computer.


')
In practice, it is difficult to implement data theft using BitWhisper, because for a successful exchange of information both computers must be infected with a special type of malware, the distance between the system blocks of devices should not exceed 40 centimeters, and yet the maximum data transfer rate using BitWhisper is no more than 8 bits per hour.

Now scientists have investigated the possibility of data theft using computer coolers.



According to the expert Mordechai Guri, by changing the rotational speed of the cooler, you can get the data stored on the system. An attack called Fansmitter will be needed if the physically isolated computer does not have speakers and it is impossible to obtain information via audio channels.

In order for such an operation to succeed, the attacker must install special malicious software on the target system. This method is based on the analysis of noise, which is published while the processor and the cooler are running. Special software can adjust the speed of rotation of the cooler, control the sound waves sent by the computer. The received binary data is changed, then transmitted via radio signals to a remote microphone, it can be the nearest phone.


Researchers have already managed to transfer data from a physically isolated computer to a smartphone that was in the same room without the help of sound equipment. Encryption keys and passwords over a distance of eight meters at a speed of 900 bits per hour were transferred.

It was concluded that this method works with any equipment without speakers, but with coolers. Information is an alternation of zeros and ones, and by adjusting the speed of rotation of the cooler, this method will allow broadcasting these zeros and ones outside. Fansmitter can intercept control of any coolers in the system.

If it is impossible to carry a mobile or any other special device into a closed room with a protected machine, the GSMem program was developed, which will transfer data from an infected PC to any, even the oldest push-button phone, while using GSM frequencies.