Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
TrojPix Exploits Pixel Modulation to Leak Data

TrojPix Exploits Pixel Modulation to Leak Data

Posted on July 6, 2026 By CWS

Researchers from Shandong University have unveiled a groundbreaking method called TrojPix, which allows data extraction from air-gapped computers using pixel modulation. The innovative technique manipulates screen pixels in an imperceptible manner, causing video cables to emit detectable radio signals that can be decoded by nearby receivers.

Mechanics of the TrojPix Technique

TrojPix leverages a specific way of altering on-screen pixels that remain invisible to the naked eye. This alteration causes the video cable to emit faint radio signals, which can be intercepted. However, the method requires pre-installed malware on the target system, making it a data exfiltration method rather than a penetration technique.

During experiments, TrojPix achieved a maximum throughput of 8.1 Mbps and a range of 208 meters, although these metrics were not achieved simultaneously. This efficiency allows the transfer of substantial data volumes, such as a 100 MB file, in less than two minutes. However, real-world conditions could affect performance due to interference from obstacles like walls and electronic noise.

Implementation and Implications

The researchers demonstrated that TrojPix does not require administrative privileges or hardware modifications. User-level malware capable of rendering images on the screen is sufficient for executing the technique. The method has been tested successfully across multiple monitor brands and video cable types, indicating its broad applicability.

To conceal the data transmission, TrojPix employs two strategies: simulating a powered-off display or embedding signals within existing on-screen content. These techniques ensure that the data exfiltration process remains undetected during operation.

Historical Context and Future Considerations

The concept of using video cables for covert data transmission is not entirely new, tracing back to TEMPEST studies and similar recent endeavors like TEMPEST-LoRa. TrojPix, however, offers significantly higher data throughput compared to previous methods.

While these techniques remain largely experimental, they highlight potential vulnerabilities in air-gapped systems. Historical incidents of air-gap breaches, such as those involving USB drives, emphasize the importance of securing isolated systems against malware infiltration.

Preventative measures against such data leaks include utilizing fiber-optic cables, which do not emit detectable signals, and implementing physical shielding for cables and sensitive areas. Ultimately, preventing malware installation remains the most effective defense against TrojPix and similar threats.

As cybersecurity threats evolve, understanding and mitigating risks posed by innovative data exfiltration techniques like TrojPix becomes crucial for safeguarding sensitive information.

The Hacker News Tags:air-gapped systems, cyber espionage, Cybersecurity, data leak, Malware, pixel modulation, Shandong University, Tempest, TrojPix, video cable emissions

Post navigation

Previous Post: Critical Opera GX Flaw Exposes User Data to Hackers

Related Posts

Security Challenges Posed by AI-Driven Apps Exposed Security Challenges Posed by AI-Driven Apps Exposed The Hacker News
FunkSec Ransomware Decryptor Released Free to Public After Group Goes Dormant FunkSec Ransomware Decryptor Released Free to Public After Group Goes Dormant The Hacker News
CISA Alerts on SharePoint Flaw Amidst Active Exploitation CISA Alerts on SharePoint Flaw Amidst Active Exploitation The Hacker News
WhatsApp 0-Day, Docker Bug, Salesforce Breach, Fake CAPTCHAs, Spyware App & More WhatsApp 0-Day, Docker Bug, Salesforce Breach, Fake CAPTCHAs, Spyware App & More The Hacker News
Nomani Investment Scam Surges 62% Using AI Deepfake Ads on Social Media Nomani Investment Scam Surges 62% Using AI Deepfake Ads on Social Media The Hacker News
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware The Hacker News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • TrojPix Exploits Pixel Modulation to Leak Data
  • Critical Opera GX Flaw Exposes User Data to Hackers
  • SkillCloak Evades AI Scanners with New Techniques
  • SSH Honeypots Overlook Key Non-Interactive Attacks
  • Opera GX Flaw Allowed Silent Mod Installs, Data Theft

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • TrojPix Exploits Pixel Modulation to Leak Data
  • Critical Opera GX Flaw Exposes User Data to Hackers
  • SkillCloak Evades AI Scanners with New Techniques
  • SSH Honeypots Overlook Key Non-Interactive Attacks
  • Opera GX Flaw Allowed Silent Mod Installs, Data Theft

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark