Eclypsium researchers demonstrated how Linux-based webcams, such as Lenovo’s models, can be weaponized through firmware modification to create persistent threats. The attack method, called BadCam, allows remote re-flashing of firmware, enabling continuous re-infection even after system reinstallation. #LenovoWebcams #BadCam #FirmwareVulnerability
Keypoints
- Researchers showed how Linux-based webcams can be exploited using firmware modifications.
- The attack, named BadCam, enables remote re-flashing of webcam firmware without physical access.
- This vulnerability allows attackers to maintain persistence and re-infect systems after reinstallation.
- Lenovo webcams are affected due to missing firmware signature validation and related vulnerabilities.
- Other Linux-based cameras and USB peripherals may also be vulnerable to similar attacks.
Read More: https://www.securityweek.com/badcam-new-badusb-attack-turns-linux-webcams-into-persistent-threats/