What’s new: Researchers have identified vulnerabilities in Lenovo’s Linux-based webcams (models 510 FHD and Performance FHD) that can be exploited to conduct BadUSB attacks. This allows remote attackers to inject keystrokes and execute commands without needing physical access to the device. Lenovo has released firmware updates (version 4.8.0) to address these vulnerabilities.
Who’s affected
Users of Lenovo 510 FHD and Lenovo Performance FHD webcams are at risk due to the lack of firmware validation, which can lead to complete compromise of the camera software.
What to do
- Update the firmware of affected Lenovo webcams to version 4.8.0 or later.
- Monitor for any unusual behavior from connected peripherals.
- Implement security measures to restrict unauthorized access to devices capable of running their own operating systems.
