zlacker

[return to "Malware can turn off webcam LED and record video, demonstrated on ThinkPad X230"]
1. sbarre+T1[view] [source] 2024-11-27 20:27:36
>>xairy+(OP)
I thought the whole point of these camera LEDs was to have them wired to/through the power to the camera, so they are always on when the camera is getting power, no matter what.

Having the LED control exposed through the firmware completely defeats this.

◧◩
2. TZubir+f5[view] [source] 2024-11-27 20:48:06
>>sbarre+T1
The idea has been around for quite some time. But it is always dropped.

My guess is that, assuming the most basic and absolute physicial design, the light would flash for silly things like booting, upgrading firmware, checking health or stuff like that.

◧◩◪
3. greent+K5[view] [source] 2024-11-27 20:51:42
>>TZubir+f5
Flashing is easily fixed with a capacitor and also not a bad thing if it turns off when it loses power immediately. The only explanation that makes sense to me is it being separately controlled is a feature not a bug.
◧◩◪◨
4. TZubir+Ai[view] [source] 2024-11-27 22:27:26
>>greent+K5
I agree on the capacitor fix for flashing, I pointed it out in another post.

In this case I was referring to false positives to the user.

This would mean we can't update the firmware without causing the user some paranoia.

Also. Would an app requesting permission to use camera itself send some power to the camera to verify it is available? In a similar vein, what about checking if the camera is available before even showing the user the button to use the camera?

Maybe there's solutions to this, I'm just pointing out some reasons they may have gone the software route instead of the hardware route.

[go to top]