zlacker

[return to "Malware can turn off webcam LED and record video, demonstrated on ThinkPad X230"]
1. sbarre+T1[view] [source] 2024-11-27 20:27:36
>>xairy+(OP)
I thought the whole point of these camera LEDs was to have them wired to/through the power to the camera, so they are always on when the camera is getting power, no matter what.

Having the LED control exposed through the firmware completely defeats this.

◧◩
2. 542458+96[view] [source] 2024-11-27 20:54:08
>>sbarre+T1
They are hardwired on Macbooks. From Daring Fireball, quoting an email from an Apple engineer.

> All cameras after [2008] were different: The hardware team tied the LED to a hardware signal from the sensor: If the (I believe) vertical sync was active, the LED would light up. There is NO firmware control to disable/enable the LED. The actual firmware is indeed flashable, but the part is not a generic part and there are mechanisms in place to verify the image being flashed. […]

> So, no, I don’t believe that malware could be installed to enable the camera without lighting the LED. My concern would be a situation where a frame is captured so the LED is lit only for a very brief period of time.

https://daringfireball.net/2019/02/on_covering_webcams

◧◩◪
3. aftbit+U7[view] [source] 2024-11-27 21:05:55
>>542458+96
>The actual firmware is indeed flashable, but the part is not a generic part and there are mechanisms in place to verify the image being flashed.

That might make it harder to develop a hack, but one would hope that if the hardware team tied the LED to a hardware signal, it would not matter if the firmware were reflashed.

◧◩◪◨
4. varenc+I8[view] [source] 2024-11-27 21:11:29
>>aftbit+U7
I believe that it’s not literally hardwired in the sense that powering up the camera also powers up the camera LED, and instead this relies on logic in the hopefully un-flashable camera+LED firmware. Someone correct me if I’m wrong.

You need some logic to enforce things like a minimum LED duration that keeps the LED on for a couple seconds even if the camera is only used to capture one brief frame.

I have a script that takes periodic screenshots of my face for fun and I can confirm the LED stays on even if the camera only captures one quick frame.

◧◩◪◨⬒
5. MaxikC+q9[view] [source] 2024-11-27 21:16:48
>>varenc+I8
A capacitor can hold enough charge to power led for noticable amount of time even if powered for a brief moment, no logic needed
◧◩◪◨⬒⬓
6. square+hn[view] [source] 2024-11-27 23:10:02
>>MaxikC+q9
I don't think they would waste a high value capacitor just to keep a led lit for longer, also a led directly lit by a capacitor would be noticeable by slowly dimming when the capacitor discharges. It's more likely that the signal driving the led comes out of a monostable implemented in code: pin_on() drives the led on; pin_off() waits n secs then drives the led off.
◧◩◪◨⬒⬓⬔
7. altair+VD[view] [source] 2024-11-28 02:12:21
>>square+hn
This is Apple, so that assertion isn’t guaranteed valid like it would be for non-enterprise HP or Lenovo. They absolutely would invest in a capacitor if that’s what it takes, as they are maximally focused on camera privacy concerns and have made a point of that in their security marketing over time; or else they wouldn’t be allowing hardware security engineers to brag about it, much less talk publicly about it, at all.

EDIT: It’s not just a capacitor, it’s a full custom chip, that can’t be software-modified, that keeps the light on for 3 seconds. >>42260379

[go to top]