Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
TrojPix Hack Threatens Air-Gapped Computers

TrojPix Hack Threatens Air-Gapped Computers

Posted on July 6, 2026 By CWS

A groundbreaking electromagnetic (EM) covert-channel technique, known as TrojPix, poses a new risk to air-gapped computers by extracting sensitive information from distances as far as 208 meters. Developed by researchers from Shandong University and Quan Cheng Laboratory, the method will be showcased at the 35th USENIX Security Symposium.

Innovative Data Theft Method

TrojPix represents a substantial advancement in the realm of EM covert channels, achieving a transmission rate of 8.1 Mbps, significantly surpassing previous methods. Notably, this approach remains completely undetectable to human observers.

Air-gapped systems, isolated from external networks, are employed in sectors demanding high confidentiality, such as military and governmental operations. TrojPix circumvents this isolation by transforming digital video cables into unintentional radio transmitters.

Technical Mechanisms and Impact

The attack leverages Transition-Minimized Differential Signaling (TMDS), the encoding method for HDMI interfaces. By subtly altering pixel values, malware can modulate EM emissions from the video cable, allowing remote data capture via standard radio equipment.

Crucially, TrojPix operates without requiring administrative access or hardware modifications, functioning in user mode. The malware scans for sensitive files and uses a camouflaged ‘attack video’ to establish the covert channel, making it a method for data exfiltration rather than initial compromise.

While TrojPix requires prior malware presence, its ability to retrieve data from a compromised setup over 200 meters illustrates its potential threat.

Security Implications and Countermeasures

The TrojPix researchers exemplified two attack modes: Fake Screen-Off Mode, which continues data transfer with the screen appearing off, and Foreground Embedding Mode, which integrates data into visible content. These methods remain imperceptible under various conditions and setups.

Despite EM shielding attempts, success rates remain high, indicating the limitations of current defenses. Implementing EM-leakage-free video connections and software-level countermeasures are among the suggested mitigations. The researchers are engaging with manufacturers for responsible disclosure, withholding specifics to prevent exploitation.

The emergence of TrojPix underscores the need for enhanced security measures in air-gapped environments, highlighting vulnerabilities and pushing for advancements in protective technologies.

Cyber Security News Tags:air-gapped systems, Covert channel, Cybersecurity, data exfiltration, data theft, EM emissions, EM shielding, Malware, Quan Cheng Laboratory, security measures, security symposium, Shandong University, TMDS, TrojPix, USENIX Security

Post navigation

Previous Post: TrojPix Exploits Pixel Modulation to Leak Data
Next Post: Cross-Platform QuimaRAT MaaS Targets Multiple OS

Related Posts

Beware of PNB MetLife Payment Gateway that Steals Your Details and Direct to UPI Payments Beware of PNB MetLife Payment Gateway that Steals Your Details and Direct to UPI Payments Cyber Security News
Fake Claude Campaign Utilizes PlugX-Like DLL Sideloading Fake Claude Campaign Utilizes PlugX-Like DLL Sideloading Cyber Security News
TARmageddon Vulnerability In Rust Library Let Attackers Replace Config Files And Execute Remote Codes TARmageddon Vulnerability In Rust Library Let Attackers Replace Config Files And Execute Remote Codes Cyber Security News
Storm-0900 Hackers Leveraging Parking Ticket and Medical Test Themes in Massive Phishing Attack Storm-0900 Hackers Leveraging Parking Ticket and Medical Test Themes in Massive Phishing Attack Cyber Security News
72 Vulnerabilities Fixed, Including 5 Actively Exploited Zero-Days 72 Vulnerabilities Fixed, Including 5 Actively Exploited Zero-Days Cyber Security News
China-Linked Group OP-512 Exploits IIS Servers China-Linked Group OP-512 Exploits IIS Servers Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • Cross-Platform QuimaRAT MaaS Targets Multiple OS
  • TrojPix Hack Threatens Air-Gapped Computers
  • TrojPix Exploits Pixel Modulation to Leak Data
  • Critical Opera GX Flaw Exposes User Data to Hackers
  • SkillCloak Evades AI Scanners with New Techniques

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • Cross-Platform QuimaRAT MaaS Targets Multiple OS
  • TrojPix Hack Threatens Air-Gapped Computers
  • TrojPix Exploits Pixel Modulation to Leak Data
  • Critical Opera GX Flaw Exposes User Data to Hackers
  • SkillCloak Evades AI Scanners with New Techniques

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark