Tag Archive for 2.4 GHz

| July 26, 2019
Comments Off on Fix Your Dongle – Today

Fix Your Dongle – Today

Fix Your Dongle - TodayIf you use a Logitech (LOGI) wireless mouse, keyboard or other device fix your dongle! The Logitech wireless dongle (officially Unifying Receiver) is vulnerable to an issue discovered in 2016 as well as newly discovered vulnerabilities unless you’ve updated the firmware. Download and install the latest firmware update to protect against vulnerabilities.

Mousejack attach

Logitech logoAffected Logitech wireless devices are vulnerable to a hack called “Mousejack.” Mousejack, (CVE-2016-10761) was first reported in 2016 by IoT security firm Bastille Networks, Inc. The Mousejack attach works by sending malicious radio signals (packets) wirelessly to an unsuspecting user through Logitech Unifying wireless technology. Logitech only partially fixed the hole (Cert VU#981271) in 2016. Mousejack uses the vulnerable Logitech Unifying receiver to intercept and inject unencrypted signals within a range of about 100 meters.

Incomplete fix

Logitech did not recall the Unifying Receiver back in 2016 when Mousejack appeared. Four new vulnerabilities were discovered in 2019. The new vulnerabilities are based on the incomplete 2016 fix. Logitech will only fix two of the four vulnerabilities, the others will remain unpatched. The vulnerabilities are logged as:

Logitech will not fix the holes identified in CVE-2019-13052 or CVE-2019-13053, both of which impact all Logitech Unifying devices. A Logitech representative told the Verge:

Logitech evaluated the risk to businesses and to consumers and did not initiate a recall of products or components already in the market and supply chain.

Logitech wireless mouseLogitech plans to patch the security flaws in CVE-2019-13054 (impacts Logitech R500, Logitech SPOTLIGHT) and CVE-2019-13055 which affects all encrypted Unifying devices with keyboard capabilities.

All Logitech USB dongles

Marcus Mengs, the researcher who discovered these vulnerabilities, told ZDNet the vulnerabilities impact all Logitech USB dongles that use the company’s proprietary “Unifying” 2.4 GHz radio technology to communicate with wireless devices.

Unifying is a Logitech standard dongle radio technology, and has been shipping with a wide range of Logitech wireless gear since 2009. The dongles are often found with the company’s wireless keyboards, mice, presentation clickers, trackballs, and more.

  • Sniff keyboard traffic,
  • Inject keystrokes (even into dongles not connected to a wireless keyboard)
  • Take over the computer to which a dongle has been connected.
  • Steal the encryption key between the dongle and its paired device
  • Bypass a “key blacklist” designed to prevent the paired device from injecting keystrokes

Bastille Networks

Techsupportalert.com reports that many of the vulnerable dongles are still on the market even though Logitech started releasing updated dongles sold with mice, keyboards, and stand-alone receivers.

 Hard to find firmware update

firmware updateNot long after the discovery, Techsupportalert.com, says Logitech issued a firmware update but it was hard to find on the support site and wasn’t widely known. If you didn’t update the firmware then (and most of us didn’t know about it) now is an excellent time to update.

Even if you installed the Logitech drivers and configuration app that came with the device, you are not protected. The required firmware update is not included, it must be downloaded and installed separately.

Give credit to Logitech, their firmware can be updated, where other manufacturer’s wireless dongles cannot be updated. This includes products from Microsoft, Dell (DELL, HP (HPQ), and Lenovo (LNVGY). In fact, any device that uses the same Nordic Semiconductor or Texas Instruments (TXN) chips and firmware for wireless receivers is vulnerable. The NordicRF nRF chip is a common chip used in wireless keyboards, mice, and presentation tools, which are frequently found in non-Bluetooth wireless input devices.

If you use a wireless device from Logitech or the Lenovo 500 devices, Bastille recommends you update your firmware. Any other non-Bluetooth wireless devices should be disconnected and you should contact your vendor and ask what models are not vulnerable before you replace your current gear.

Lenovo’s announcement is here.

Logitech’s announcement is here.

Here are the direct download links to the Logitech Unifying Receiver firmware update for PC, Mac, and the gaming mouse:

  • Logitech PC firmware update (zip)
  • Logitech Mac firmware update (zip)
  • Logitech G900 gaming mouse firmware update (zip)

rb-

Logitech Unifying ReceiverYou probably have an affected device on your network. Logitech has sold well over a billion mice. Users can recognize if they’re using a vulnerable dongle if it has an orange star printed on one of its sides.

If you have any extra Logitech wireless dongles around (I have several) you may want to update them.

You should also check back in with Logitech support, to see if the promised additional fixes will be forthcoming in August 2019.

Related Posts

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , , , , ,
| December 22, 2015
Comments Off on Do Christmas Lights Slow Wi-Fi?

Do Christmas Lights Slow Wi-Fi?

Do Christmas Lights Slow Wi-Fi?A new holiday tradition is to spread FUD about how your Christmas lights can interfere with your Wi-Fi signal. This year’s holiday Wi-Fi FUD spreader is the UK communications regulator Ofcom. Ofcom hinted that “Fairy Lights” may slow down your 2.4 GHz Wi-Fi signal and everyone went crazy.

Christmas lightsThe theoretical science says it does. C|Net explains that Wi-Fi uses radio waves. Christmas lights emit a very weak electromagnetic field. So theoretically, they can interfere with the radio waves being transmitted from your Wi-Fi router. The more lights, the stronger the electromagnetic field. Also, the closer the lights are to the router, the more it may interfere with the Wi-Fi.

The truth about holiday light interfere

Communications technology consultant Stuart Lipoff, told C|Net how you’re affected really comes down to what type of Christmas lights you use. The older technology that was used to make the lights blink can indeed cause radio interference. The interference could happen if the holiday lights were arranged in series with each other. The total number of lamps in the string could be such that the combined voltage of all of them was equal to the 110 volts in a typical U.S. home.

Christmas lights

However modern Christmas tree lights are based on solid-state LEDs. They often use an external electronic flashing controller and do not create radio noise. However, there are some LEDs that have an extra blink-controlled chip right inside the LED bulb. It turns out that these devices also create significant radio interference. The Wi-Fi interference occurs as this internal controller cycles the LED chip from on to off. The reason is somewhat analogous to the spark problem in incandescent blinker bulbs. When the LED is between fully on and fully off it can show negative resistance that causes it to creates radio energy.

Christmas lightsYou can simulate this by taking an AM radio. Tune the radio to a frequency, not in use in your area, and switching something on and off rapidly a few times. You should hear a staticky sound. The same thing can be heard during a lightning storm.

The real Wi-Fi killers

Alina Bradford at C|Net tested the theory and found there was a slight variance, be it ever so slight. She says “the variance isn’t a big deal.”

  • PC World says the real Wi-Fi killers are households items that are on 365 days. These will disrupt your Wi-Fi a lot more than your Christmas lights. Microwaves are the worst of the lot, as it’s basically a metal box that when turned on uses high-powered microwaves at around 2.4 GHz (the same frequency as Wi-Fi). This creates a black hole around it for Wi-Fi signals.
    washing machinesOther culprits include ovens, freezers, fridges, washing machines, dishwashers… you name it. If it’s metal and has liquid-filled pipes, it’s going to kill your Wi-Fi signal according to Panda security.
    Cordless phones are also problematic. They’re often more of an issue because you’re more likely to have a portable phone on your desk than a microwave.
    Televisions and speakers are basically just electromagnets and will hurt Wi-Fi performance when placed directly near a router.
    Your neighbor’s router. Depending on how close your router is to someone else’s, there can be a direct effect on its performance. This might prove to be even more problematic if you live in an apartment. In an apartment, you could be exposed to different signals from all sides. This means that the more interference that there is, the more your router ups it’s broadcasting, This causes your neighbor’s router to do the same… which just perpetuates the problem.
    TelevisionWater pipes can also cause interference because water absorbs radio waves.
    Walls don’t generate electromagnetic fields, but they do weaken Wi-Fi signals that pass through (up to 25 dB’s can be lost).
    Humans – Yes, you too are a problem! We, humans, are 55% – 60% water, which makes us a fantastic absorber of Wi-Fi.

Things to do improve your Wi-Fi

Panda Security also suggests a few things you can do to improve your Wi-Fi.

  • Open your doors – Closed doors could effectively block or degrade wireless signals.
  • Adjust your Wi-Fi channel – The typical default is channel 6, your router may do this automatically. If you change your Wi-Fi channel you may find that there is less interference from other routers near to you. Any two channels separated by five or more do not overlap.
  • Change your channelChange your Wi-Fi Frequency The most common Wi-Fi frequency is 2.4GHz.  2.4GHz is also the most polluted. Try using 5.0 GHz. Like changing your Wi-Fi Channel your router may do this automatically. If you change your Wi-Fi frequency you may find that there is less interference from other routers near to you. You will need to check your devices to see if they support 5.0 GHz Wi-Fi, some older devices, like Apple iPhone 4’s do not.
  • Place your router in the center of your home. A router transmits the signal in all directions, so it makes sense to have it at the center of the home. Unfortunately, this isn’t always possible due to the cables that come with it.
  • Check your cables – In general, a shorter and higher quality cable will mean a faster connection speed. It is better to use Ethernet cables from your modem to a separate router than run long phone cables.
  • Invest in a new router – There’s no need to break the bank on a new, fancy router. However, some of the newer Wi-Fi routers on the market offer a notable boost in signal and speed.
  • Turn your house into a Faraday cage. Build a Faraday cage to eliminate all outside sources of electromagnetic pollution. But would also mean no telephone or FM connections.

Of course, you should also take precautions to ensure that your Wi-Fi connection is secure by putting a strong password on your router and use a modern security setting like WPA2-PSK (AES).

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , ,