Skip to main content

Hack Can Turn Headphones Into Microphone To Listen To You

By December 6, 2016May 25th, 2021Blog, Cybersecurity

hackxcanA group of Israeli security researchers operating out of Ben Gurion University have created a proof-of-concept app (malware) that can weaponize your computer’s speakers, turning them against you.

The particulars of their code sound like something out of a blockbuster Sci Fi movie script, but it’s all too real, and what’s worse is that it impacts just about every computer in use today. Here’s how it works:

The code borrows audio maker RealTek’s chipset functionality, which allows the code to retask the computer’s output channel as an input channel, without informing the user. What that means is that the malware can turn your earbuds or PC speakers into recording devices, but it gets worse.

Because the code actually converts sound into electromagnetic signals that can travel through the air, your speakers and/or earbuds don’t actually even have to be plugged into the system to work. True, the sound quality the hackers get is lower if the speakers aren’t plugged in, but they can still hear everything you say from a distance of about twenty feet.

Worst of all, there’s no real way to fix this issue. It would require a complete redesign of RealTek’s chipset, and then a global recall that would impact just about every computer in use today, since almost all of them utilize RealTek hardware. It’s just not a practical option.

Sure, the chips can be redesigned, and in ten years or so, when the last of the old gear is out of service for good, the problem will disappear, but that’s forever in computer time.

At any rate, the researchers named their proof of concept code “Speake(a)r,” and published their findings in a paper called “Speake(a)r: Turn Speakers to Microphones for Fun and Profit.” It’s a disturbing read, but highly recommended if you want to stay on top of the latest threats to your firm’s security.

Jason Manteiga

Jason J. Manteiga, Vice President of Olmec Systems, has been part of the company for over the past 20 years. He believes that having a great work environment and supportive team, is the ultimate key to success. Since being in the IT realm for over 25 years, Jason, along with Olmec Systems, has been on the Inc. 5000 “List of America’s Fastest Growing Private Companies” and Channel Futures MSP 501 “Top Managed Service Providers in North America,” along with other awards and nominations. Jason earned his Bachelor Degree in Information Systems from the New Jersey Institute of Technology. He also holds certifications in Microsoft MCSE, VMWare VCP, and Cisco CCNA. In his spare time, Jason is a contributor for The Center for Social & Legal Research (Privacy Exchange) and a member of the Morris County Chamber of Commerce. His hobbies include cycling and kayaking. He currently lives in New Jersey with his wife, two daughters and son.