Author Topic: Are I/O devices disabled in the BIOS still vulnerable to malware.  (Read 3510 times)

0 Members and 1 Guest are viewing this topic.

Offline xyela

  • Thread Starter
  • Posts: 1
Are I/O devices disabled in the BIOS still vulnerable to malware.
« on: Sun, 05 November 2023, 16:18:50 »
Apologies if this is the wrong place or is a naive question. If a user has disabled I/O devices via the BIOS, for example, an internal microphone and webcam, is it possible for malware to still 'spy' on the user via these devices? I guess my question boils down to how the BIOS disables these devices? And whether it is possible for malware to get around whatever method the BIOS uses to disable these devices.

Offline Leslieann

  • * Elevated Elder
  • Posts: 4518
Re: Are I/O devices disabled in the BIOS still vulnerable to malware.
« Reply #1 on: Sun, 05 November 2023, 20:00:36 »
There's more than a few security people who go so far as to disconnect the webcam wiring and clip the mic wires in any laptops they buy.

That's a bit extreme for most but if you just want added protection without damaging things you could disable them in bios then re-install Windows so that the OS has no record of them ever existing and therefore no drivers or registry entries showing it ever existed. Not perfect, but better than nothing.

Ask yourself this though, are you worth hacking at this level? 
It's not trivial to target a specific person with something like this over the internet and quite easy to be inundated with too much data to be useful if you cast too wide of a net. Most hacks like this tend to be through monitoring/security software on a company/school laptop and someone in charge abusing that system. It's far easier for someone with access to your laptop or home to just install a hidden camera elsewhere and watch all the time from angles/places where they're sure to catch something than hoping to catch you dancing naked in front of your webcam.
Novelkeys NK65AE w/62g Zilents/39g springs
62g Zilents/lubed/Novelkeys 39g springs, HK Gaming Thick PBT caps, Netdot Gen10 magnetic cable, pic
| Filco MJ2 L.E. Vortex Case, Jailhouse Blues, heavily customized
Vortex case squared up/blasted finish removed/custom feet/paint/winkey blockoff plate, HID Liberator, stainless steel universal plate, 3d printed adapters, Type C, Netdot Gen10 magnetic cable, foam sound dampened, HK Gaming Thick PBT caps (o-ringed), Cherry Jailhouse Blues w/lubed/clipped Cherry light springs, 40g actuation
w/ Kailh Purple Pros/lubed/Novelkeys 39g springs, HK Gaming Thick PBT caps, Netdot Gen10 Magnetic cable
| PF65 3d printed 65% w/LCD and hot swap
Box Jades, Interchangeable trim, mini lcd, QMK, underglow, HK Gaming Thick PBT caps, O-rings, Netdot Gen10 magnetic cable, in progress link
| Magicforce 68
MF68 pcb, Outemu Blues, in progress
| YMDK75 Jail Housed Gateron Blues
J-spacers, YMDK Thick PBT, O-rings, SIP sockets
| KBT Race S L.E.
Ergo Clears, custom WASD caps
| Das Pro
Costar model with browns
| GH60
Cherry Blacks, custom 3d printed case
| Logitech Illumininated | IBM Model M (x2)
Definitive Omron Guide. | 3d printed Keyboard FAQ/Discussion