as for an installed keylogger, there are organizations that will inspect for that and catch it. My point is this is a way to get an actually unmolested USB device into play.
But I hear you, this isn't likely an ideal option right now, but it is an option for maybe some niche case. And these are early days, put enough funding behind it and it might become more viable. Or not. Mostly I'm just offering the thought that there ARE use cases if someone puts even a moment's creative thought into trade craft and the problems it might solve like breaking the air gap, emplacement, avoiding detection, and data exfil. Each of those are problems to be solved at various levels of difficulty depending on the exact target.
Hmmm not totally. A bad actor could record the keyboard and then figure out a way to get it installed. Either through a logistics attack (not everyone maintains a secure supply chain), or an insider threat installing it. Everyone's trained not to allow thumb drives and the like. But a 100% completely unaltered bog standard keyboard brought into a building is probably easier, and for sure less suspicious if you get caught.
Sure you might say, "but if you have an insider you've already lost" to which I say, your insider is at risk if they do certain things. But once this keyboard is installed, their own detection risk is less.
Now the question is, how far away can the mic be? Because that's gonna be suspicious AF getting that installed. BUT!!! this is still a great way to break the air gap.
Legally you can't even create the PoA if the person isn't deemed competent because they can't sign it. So then you have to go to a judge for them to appoint someone.
So by the letter of the (IANAL but I'm working this issue with family right now) law, the fact that a PoA might have just been created means she has to be considered competent enough to sign on.
But yeah the line between "I'd trust them with my life" and "no one in their right mind would allow them to sign" is broad.
pretty much yes to keys and hashes. Just think HDCP and HDMI
That said, I imagine it'll have to be easier to hack software that isn't embedded in hardware. but it's also easier to issue revocation lists when you don't have to worry about bricking everyone's hardware. So I have no idea which way that balance tilts.
yes I'm well aware of how much I screwed up. Also owned a few grand of Applied Material (AMAT); bought and sold around the same time.
Then again, when I sold it felt like they were gonna be the next .com bubble victim. I panicked. It was a very expense lesson at the time. Even more so now in retrospect.
[crying] Bought $10k AMZN late-1999, sold in late-2000, because it lost like 50% value. A very expensive lesson learned not to play in the market. Ironically I now both know better than to buy individual stocks, but also have the fortitude to stick it out.
by that logic there was nothing novel about solid state transistors since they just did the same thing as vacuum tubes; no innovation there I guess. No new ideas came from finally having a way to pack cooler, less power hungry, smaller components together.
"According to the spokesman, Prigozhin told Mr Putin that Wagner unconditionally supported him."
Yeah shit is crazy. I mean at first blush I wanna say that's a power move on Putin's part getting a former mutineer to bend the knee. But of course that's only overshadowed by Putin receiving a former mutineer at an official function. Not sure who really has the gun to who's head. Or why neither has fired. Is this a Mutually Assured Destruction situation?
Well if it's just painted string then who needs scissors? You have a cat!