🟡 Medium  |  Source: The Hacker News


Researchers have demonstrated a technique called TrojPix that exfiltrates data from air-gapped computers by subtly manipulating on-screen pixels to generate detectable radio emissions from the video cable, which a nearby receiver can decode. The attack requires malware to already be present on the target machine. It represents a novel side-channel threat for high-security environments that rely on physical isolation as a primary defence.

Security Architect’s Take: For environments handling sensitive workloads on air-gapped systems — including on-premises infrastructure supporting classified or regulated data — review physical security controls around terminal access and consider RF shielding or Faraday enclosures for the most sensitive machines. Prioritise preventing initial malware compromise, as TrojPix is entirely dependent on a prior foothold.

Original advisory: New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions