New PIXHELL Attack Exploits Screen Noise to Exfiltrates Data from Air-Gapped Computers

New PIXHELL Attack Exploits Screen Noise to Exfiltrates Data from Air-Gapped Computers

September 10, 2024 at 07:39AM

PIXHELL, a new side-channel attack, targets air-gapped computers by exploiting the “audio gap” to exfiltrate sensitive data using the noise generated by the screen pixels. The attack doesn’t require specialized audio hardware and could bypass air-gapping security measures. Countermeasures include acoustic jammers and monitoring for unusual signals.

From the meeting notes, the key takeaways are:

1. A new side-channel attack called PIXHELL exploits the acoustic signals generated by the pixels on an LCD screen to exfiltrate sensitive information from air-gapped computers.
2. The attack can bypass traditional air-gapping security measures and does not require specialized audio hardware, relying instead on the screen itself to generate acoustic signals.
3. The attack can be facilitated by rogue insiders, compromise of hardware or software supply chain, phishing, or social engineering techniques.
4. The attack can be made covert by transmitting when the user is absent or by reducing pixel colors, but these methods have limitations and may still be detectable.
5. The attack is similar to previous experiments that utilized sounds from computer components to leak information.
6. Countermeasures include using acoustic jammers, monitoring the audio spectrum for unusual signals, limiting physical access, prohibiting smartphone use, and using external cameras to detect unusual screen patterns.

These takeaways reflect the potential impact of the PIXHELL attack and the recommended countermeasures to mitigate its risks.

Full Article