Researchers at Shandong University developed TrojPix, a technique that exploits video cable emissions to leak data from air-gapped computers. This method can transmit data at a high rate of 8.1 Mbps over distances of up to 208 meters, posing significant security risks for sensitive systems.
Researchers at Shandong University demonstrated TrojPix, a method that allows airborne data leakage from computers completely isolated from networks, commonly known as air-gapped systems. The technique relies on invisible modifications to on-screen pixels that cause video cables to emit radio signals, which can be received and decoded by nearby devices.
The TrojPix method achieved a maximum throughput of 8.1 Mbps, enabling the transfer of large files in a fraction of the time previously thought possible. In testing, a 100 MB file could theoretically be transmitted in under two minutes, a significant increase compared to typical air-gap covert channels which operate at much slower speeds.
TrojPix operates using user-level malware that manipulates screen output without requiring administrative rights or alterations to hardware. This allows it to be implemented with minimal detection risk. The researchers identified two methods to conceal the data during transmission: one simulates a powered-off monitor while sending data, and another integrates the data stream with existing screen content to mask the activity.
While the discovery of using video cable emissions for data theft is not novel—having roots in the studies of compromising emanations like TEMPEST—TrojPix significantly improves upon previous techniques. For example, older methods like TEMPEST-LoRa had much lower throughput and shorter ranges, highlighting TrojPix’s advancements.
Though TrojPix demonstrates a new vulnerability in security systems, it remains a laboratory finding rather than a confirmed real-world threat. Nonetheless, it indicates potential future risks for sensitive installations, emphasizing the need for improved countermeasures against such sophisticated data extraction methods.
✨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors — check the original sources. How BrevFeed works →
Researchers at Shandong University developed TrojPix, a technique that exploits video cable emissions to leak data from air-gapped computers. This method can transmit data at a high rate of 8.1 Mbps over distances of up to 208 meters, posing significant security risks for sensitive systems.