Recently, it turned out that it is possible to grant administrator rights only with a Razer mouse – as long as we have local access to the device. John Hatt, a security researcher, reported this to Razer, but decided to publicize this fact because the company has not commented on the matter. Now, Razer has finally made its decision Work on the appropriate correction.
What is going on? It is enough to connect the Razer mouse to the dongle on the computer, which, in turn, will update Windows and execute the file RazerInstaller.exe – it runs under the system privilege, but also allows users to view the file explorer using the administrator settings. This means that someone has local access to the device, Administrative privileges can be obtained on our computer. A full exploit is shown below.
Fortunately, Razer works on the appropriate patch first, and secondly – you need to have both physical and local access to the computer, so using this exploit is not so easy. By the way, it is worth adding that recently there was another attempt to extort data on the network, this time in the form of The mObywat fake app. Apple is also facing more and more criticism, as it aims to introduce technologies to detect images that display abuse against children.
“Reader. Organizer. Infuriatingly humble twitter expert. Certified communicator.”