m_w has joined ##openfpga
mumptai has quit [Quit: Verlassend]
<pie__> this seems kinda neat
* qu1j0t3 nods
<cyrozap> azonenberg: One of the attacks in the presentation I linked was "present a green HTTPS lock for a phishing website", and it works because that particular LCD controller can both read and write to arbitrary pixels on the screen, so it can do OS/browser detection, etc.
<azonenberg> cyrozap: innteresting
<qu1j0t3> yeah, that's intense
<cyrozap> Not all LCD controllers are capable of that (this was a particularly fancy one), but the firmware for a bunch of Dell monitors can be updated over I2C/DDC (which, remember, the MCU in the dongle has to talk over in order to translate between DP AUX and HDMI DDC).
<cyrozap> And even the cheapest Realtek LCD controllers can be updated over DDC/I2C, so it's probably not that far-fetched of an attack vector.
<azonenberg> yeah interesting
<cyrozap> Because even if you hit one of the controllers that can't read/write arbitrary pixels, you can still use it as an infected host to spread the malware to another dongle, which could then spread it to a more valuable target.
<azonenberg> yeah
<cyrozap> Sorry, small correction: It seems Dell monitor firware is updated over USB, not DDC, but you can still send commands to the monitor over DDC/CI, so if the monitor doesn't parse them properly you could potentially exploit that. That said, the Realtek RTD2660/RTD2662 LCD controller is updated over DDC, so this would still apply to devices based on that SoC, at a minimum.
m_w has quit [Quit: leaving]
Patater has quit [Ping timeout: 255 seconds]
Bike has quit [Quit: leaving]
user10032 has joined ##openfpga
Patater has joined ##openfpga
theMagnumOrange has quit [Ping timeout: 240 seconds]
rqou has quit [Quit: ZNC 1.7.x-git-709-1bb0199 - http://znc.in]
Morn_ has quit [Quit: ZNC - http://znc.in]
theMagnumOrange has joined ##openfpga
user10032 has quit [Remote host closed the connection]
eduardo__ has joined ##openfpga
eduardo_ has quit [Ping timeout: 256 seconds]
rqou has joined ##openfpga
rqou has quit [Quit: ZNC 1.7.x-git-709-1bb0199 - http://znc.in]
rqou has joined ##openfpga
Morn_ has joined ##openfpga
m_t has joined ##openfpga
pie___ has joined ##openfpga
pie__ has quit [Ping timeout: 248 seconds]
inode has quit [Quit: ]
m_t has quit [Remote host closed the connection]
m_t has joined ##openfpga
enriq has joined ##openfpga
enriq has quit [Ping timeout: 248 seconds]
m_w has joined ##openfpga
m_w has quit [Quit: leaving]
m_w has joined ##openfpga
m_t has quit [Remote host closed the connection]
mumptai has joined ##openfpga
user10032 has joined ##openfpga
azonenberg_work has quit [Ping timeout: 255 seconds]
inode has joined ##openfpga
user10033 has joined ##openfpga
user10032 has quit [Ping timeout: 256 seconds]
azonenberg_work has joined ##openfpga
azonenberg_work has quit [Client Quit]
azonenberg_work has joined ##openfpga
<pie___> whitequark, nice @ demangling
<pie___> or whatever, c++ interrogation
<pie___> just saw if from the corner of my eye
<pie___> cyrozap, damn lol
GenTooMan has joined ##openfpga
user10033 has quit [Quit: Leaving]
sielicki has joined ##openfpga
gnufan has joined ##openfpga
enriq has joined ##openfpga
mumptai has quit [Quit: Verlassend]
m_w has quit [Ping timeout: 265 seconds]
Bike has joined ##openfpga