Technology

Hackers can now use your body heat to steal your passwords

While you type your password on your laptop or computer, you are also leaving heat traces that hackers can pick up and steal your password subsequently. Hackers make use of thermal imaging camera and then they scan your computer keyboard where you have typed your password.

Researchers at the University of California, Irvine UCI found out while conducting a research that key presses can be recovered within half a minute after the first key was pressed using the off-the-shelf solutions offered by FLIR cameras which are infrared and heat detecting. After a minute has passed, thermal scans can be used to obtain partial passwords.

The researchers found out that the thermal residue evaporates over time and there is a time before which thermal energy readings can be harvested from computer or laptops to recover the recently entered information.

Thirty users who are not experts were asked to guess the passwords based on thermal imaging scans. The users were able to guess passwords within 19.5 and 31 seconds after they were initially entered. While weak passwords such as football took half a minute for non-experts to obtain, as reported by TechRepublic.

So, the researchers came to a conclusion that by using forefingers to type, a user can leave a bigger fingerprint on each key which led to more heat trace left behind. This leads to the generation of more thermal noise. This made it tough to analyze heat traces using FLIR camera. While those that have acrylic fingernails are less prone to thermal attacks as they type with fingernails and therefore they leave almost no heat trace behind.

So, the findings suggest that thermal imaging attacks are realistic. If you need to keep your passwords safe while using computers in a public environment, you must use two-factor authentication. For this attack, an attacker needs to place a camera that has thermal recording features near the computer from where he intends to steal passwords. Furthermore, the research team believes that in order to get rid of passwords to secure user information, there must be an alternative to the use of passwords.

Researchers said,

“As formerly niche sensing devices become less and less expensive, new side-channel attacks move from ‘Mission: Impossible’ towards reality. This is especially true considering the constantly decreasing cost and increasing availability of high-quality thermal imagers.”

Sponsored
Ammara Saleem

I love to cover news about latest happenings in startup ecosystem and world of technology. I am obsessed with the use of Tech gadgets and always prefer to use them unless I have to make a choice between paperback and Kindle.

Leave a Comment
Share
Published by
Ammara Saleem

Recent Posts

China’s Tencent Releases Large Language Model, Opens it For Enterprise Use

Capable of conversing in both Chinese and English, Tencent’s large language model ‘Hunyuan’ is claimed…

8 months ago

Apple Reportedly Spending ‘Million of Dollars Each Day’ for AI Training

Working on multiple AI models, Apple has allocated several teams who are working on artificial…

8 months ago

World’s Largest Wind Turbine Breaks Record For Power Generated In A Single Day-During A Typhoon

The world's largest offshore wind turbine has achieved a milestone by setting a new record…

8 months ago

YouTube Will Let You Play Mini Games Soon

YouTube is stepping into the world of gaming. YouTube has started testing out its gaming…

8 months ago

Pakistani Student Won First Position In Matric Exams of UAE

In a remarkable academic achievement, Abdullah Zaman, a Pakistani student hailing from Attock, has clinched…

8 months ago

‘Flying Bum’ World’s largest Aircraft Is Ready To Launch In 2026 With Hybrid Technology

Flying Bum, the world's largest aircraft is ready to launch in 2026. The Airlander 10…

8 months ago