"Mijangos told me that he'd figured out how to turn off a camera's LED, cloaking himself completely."
Anyone know if this is actually possible? I don't know anything about laptop cameras, but it seems like you wouldn't want the LED to even be under software/firmware control - just put it in series with the camera circuit. An LED has to have a significantly lower failure rate than a camera, right?
I know that with my Logitech Pro 9000, the Logitech software that comes with it gives you the ability to turn off the LED. Their software also has remote viewing built in. I'm sure designs vary, but it is at least possible with this camera.
I can't find where I read this, but I believe the reset line of the camera module is typically tied to the LED, so it can't be in a powered-on state without the LED being active.
Doesn't take a hacker to watch through a webcam. Lets not forget the 2010 story of school spying on students at home: http://en.wikipedia.org/wiki/Robbins_v._Lower_Merion_School_... They even disciplined the student for breaking some school regulation while he was being observed...
I miss the old Apple iSight webcams that had a metal iris that would close when you turned it off. There was a time when Steve Jobs apparently didn't want to be Big Brother.
Good, then I wasn't too paranoid when I put aluminum foil over the webcam on my laptop (which for some reason didn't have an LED attached to it).
Interestingly enough if the guy had used tor and an online hosting system brought with his stolen credit cards, he would properly never have been court.
After years of thinking people were 'paranoid' for putting stickers/tape/etc. over their webcams, just yesterday I started doing the same thing.
Like most people, I also used to think the indicator light would always come on when the webcam was active (as in, it would be part of a hardware circuit or something similar), but I now know this is not the case (at least on my own laptops).
One example of this is the Prey anti-theft agent[1]. If your laptop is stolen, you can remotely take pictures using the laptop's webcam (similar to what happened in the many 'stolen laptop' stories we've seen on HN where images of the thief are then posted online). When I test out this feature of Prey on my own laptop, it successfully takes the pictures for me but the webcam's indicator light is never turned on. It's worth trying this for yourself.
Anyway, (IMHO) you're better safe than sorry since a tiny sticker isn't a big deal.
As an anecdote, I noticed in my tests of Prey that I just don't notice the light in that instant it's turned on. If someone wants to jut get quick pictures of who's using your computer, momentary blinks are probably going to be unnoticed while longer periods of activity are more likely to be noticed.
"Mijangos wasn't looking for trouble, not at first at least, but information on coding is just a few clicks from sites on criminal hacking."
WTF?!?
OK, literally, that /might/ be true, /if/ you had the right search terms to start with. But "just a few clicks from" is also a pretty obvious metaphor for "not far from" or "almost similar to". The author is basically implying "ZOMG most software developers are out to spy on you naked!"
What is this, part of the War On Things You Don't Understand?
It's certainly not unheard of for memory corruption issues to exist in SMS handling code - see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2204 . There's also a pretty wide remote exploit vector in MMS - you have an entire TCP + HTTP stack, image decoder, and render mechanism to exploit in that case. I don't know of any published MMS exploits in the wild for any recent phones, but that's not to say it's impossible.
I do agree that the article as a whole sounds like 90s/early-2000s paranoia combined with the standard glorification of "cyberpunks," though - it's just not the "iPhone via text" anecdote that's raising red flags.
[+] [-] defen|14 years ago|reply
Anyone know if this is actually possible? I don't know anything about laptop cameras, but it seems like you wouldn't want the LED to even be under software/firmware control - just put it in series with the camera circuit. An LED has to have a significantly lower failure rate than a camera, right?
[+] [-] raesene2|14 years ago|reply
[+] [-] lancefisher|14 years ago|reply
[+] [-] archivator|14 years ago|reply
[+] [-] huntero|14 years ago|reply
[+] [-] artursapek|14 years ago|reply
[+] [-] six881|14 years ago|reply
[+] [-] dexen|14 years ago|reply
[+] [-] safetyscissors|14 years ago|reply
[+] [-] drdoooom|14 years ago|reply
[+] [-] chrisdroukas|14 years ago|reply
You don't say.
[+] [-] nessus42|14 years ago|reply
[+] [-] dholowiski|14 years ago|reply
[+] [-] tomjen3|14 years ago|reply
Interestingly enough if the guy had used tor and an online hosting system brought with his stolen credit cards, he would properly never have been court.
[+] [-] six881|14 years ago|reply
After years of thinking people were 'paranoid' for putting stickers/tape/etc. over their webcams, just yesterday I started doing the same thing.
Like most people, I also used to think the indicator light would always come on when the webcam was active (as in, it would be part of a hardware circuit or something similar), but I now know this is not the case (at least on my own laptops).
One example of this is the Prey anti-theft agent[1]. If your laptop is stolen, you can remotely take pictures using the laptop's webcam (similar to what happened in the many 'stolen laptop' stories we've seen on HN where images of the thief are then posted online). When I test out this feature of Prey on my own laptop, it successfully takes the pictures for me but the webcam's indicator light is never turned on. It's worth trying this for yourself.
Anyway, (IMHO) you're better safe than sorry since a tiny sticker isn't a big deal.
[1] http://preyproject.com/
[+] [-] paxswill|14 years ago|reply
[+] [-] there|14 years ago|reply
[+] [-] enneff|14 years ago|reply
Huh? I remember seeing trojans that could do this back in 2000. I find it hard to believe that this hasn't come up before.
[+] [-] Karellen|14 years ago|reply
WTF?!?
OK, literally, that /might/ be true, /if/ you had the right search terms to start with. But "just a few clicks from" is also a pretty obvious metaphor for "not far from" or "almost similar to". The author is basically implying "ZOMG most software developers are out to spy on you naked!"
What is this, part of the War On Things You Don't Understand?
Fuck that.
[+] [-] glimcat|14 years ago|reply
[+] [-] driverdan|14 years ago|reply
[+] [-] bri3d|14 years ago|reply
I do agree that the article as a whole sounds like 90s/early-2000s paranoia combined with the standard glorification of "cyberpunks," though - it's just not the "iPhone via text" anecdote that's raising red flags.