A team of researchers at Cornell University has developed a new AI model that can overhear typing and steal passwords with an accuracy rate of 95%. This breakthrough technology has raised concerns about the vulnerability of keyboards to acoustic side channel attacks.
The researchers presented their findings in a report titled “A Practical Deep Learning-Based Acoustic Side Channel Attack on Keyboards.” The AI model was trained using keystrokes on a laptop, which were transmitted over a smartphone. In addition, the researchers leveraged the popular video conferencing app Zoom to further train the AI model. With the help of Zoom, the model was able to accurately replicate passwords with a 93% success rate.
The team of researchers highlighted the increasing threat posed by acoustic side channel attacks to keyboards. They explained, “With recent developments in deep learning, the ubiquity of microphones, and the rise in online services via personal devices, acoustic side channel attacks present a greater threat to keyboards than ever.” The results of their study demonstrate the practicality of these attacks using readily available equipment and algorithms.
Acoustic side channel attacks involve leveraging sound as a means to extract sensitive information. In this case, the researchers were able to eavesdrop on typing sounds and use the AI model to infer the corresponding keystrokes. This allowed them to steal passwords with remarkable accuracy.
The use of off-the-shelf equipment and readily available algorithms makes this type of attack more accessible to malicious actors. It highlights the need for improved security measures to protect users’ sensitive information.
The researchers emphasized the significance of their findings by showcasing the potential implications for cybersecurity. They underscored the need for individuals and organizations to be aware of the risks associated with acoustic side channel attacks and to take appropriate precautions. Additionally, they called for further research and development of countermeasures to mitigate these threats.
The development of this AI model also raises concerns about the privacy and security implications of using video conferencing apps like Zoom. While Zoom has made efforts to address privacy concerns, its use as a training platform for this AI model highlights the potential risks associated with sharing personal data and sensitive information on such platforms.
As the use of personal devices and online services continues to grow, it is crucial for individuals and organizations to remain vigilant against emerging cybersecurity threats. Regularly updating passwords, implementing multi-factor authentication, and staying informed about the latest security practices are essential steps in protecting sensitive information.
In conclusion, the Cornell University researchers have demonstrated the practicality of acoustic side channel attacks on keyboards using a new AI model. By training the model with keystrokes transmitted over a smartphone and utilizing the Zoom conferencing app, they were able to accurately replicate passwords with alarming precision. This research highlights the urgent need for enhanced security measures and further research to safeguard against acoustic side channel attacks.