frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

We X-Rayed a Suspicious FTDI USB Cable

https://eclypsium.com/blog/xray-counterfeit-usb-cable/
70•aa_is_op•2h ago

Comments

invokestatic•1h ago
I have a slow burn project where I simulate a supply chain attack on my own motherboard. You can source (now relatively old) Intel PCH chips off Aliexpress that are “unfused” and lack certain security features like Boot Guard (simplified explanation). I bought one of these chips and I intend to desolder the factory one on my motherboard and replace it with the Aliexpress one. This requires somewhat difficult BGA reflow but I have all the tools to do this.

I want to make a persistent implant/malware that survives OS reinstalls. You can also disable Intel (CS)ME and potentially use Coreboot as well, but I don’t want to deal with porting Coreboot to a new platform. I’m more interested in demonstrating how important hardware root of trust is.

Nextgrid•1h ago
> persistent implant/malware that survives OS reinstalls

Try attacking NIC, server BMC or SSD firmware. You will achieve your goal without any hardware replacement needed.

invokestatic•1h ago
Yeah, but that doesn’t give me a reason to use the hot air station and hot plate collecting dust on my desk ;)
cbsks•15m ago
Nothing drives more creativity from me than a tool in need of a project.
da_chicken•11m ago
I mean, you could also do smartphone repairs.
mschuster91•1h ago
> I want to make a persistent implant/malware that survives OS reinstalls.

You want to look into something called "Windows Platform Binary Table" [1]. Figure out a way to reflash the BIOS or the UEFI firmware for your target device ad-hoc and there you have your implant.

[1] https://news.ycombinator.com/item?id=19800807

ronsor•49m ago
Only works if the target is running Windows (paranoid people might be on Linux), so you'd probably want to slip in a malicious UEFI driver directly. Tools like UEFITool can be used to analyze and modify the filesystem of a UEFI firmware image.
gregsadetsky•1h ago
Yeah - these [0] kinds of cables are so extremely scary.

"The O.MG Cable is a hand made USB cable with an advanced implant hidden inside. It is designed to allow your Red Team to emulate attack scenarios of sophisticated adversaries"

"Easy WiFi Control" (!!!!!)

"SOC2 certification"? Dawg, the call is coming from inside the house...

[0] https://shop.hak5.org/products/omg-cable

mschuster91•1h ago
> "SOC2 certification"? Dawg, the call is coming from inside the house...

Helps corporate red teams in environments where the purchase department is... a bunch of loons.

stainablesteel•1h ago
it's a serious problem

they could be regulated to expose their chip with transparent covering rather than plain dark wiring

trinsic2•1h ago
Jeese. I was not sure which image was the suspect one.
Neywiny•1h ago
If you've read the docs, which I'm not saying anyone is expected to, FTDI tends to put buffers on their outputs. That's what gave it away for me. The little sot-23-5 footprints.
trinsic2•1h ago
I wanted to try and figure out out before I did that. No dice.
mjevans•40m ago
I got it backwards because I expected the counterfeit part to use a newer process IC (less silicon area) than a possibly more reliable and perfectly suitable for serial connection speeds 'vintage' process on some long stable spin of silicon.

Why allow for newer processes on the counterfeit? They'd implement it using the least expensive, most mass produced chips possible, which are more likely to be cut from wafers hitting the sweet spot of size / feature and price crossover.

blibble•15m ago
the one which looks cheaper to manufacture

which is definitely the second

kps•15m ago
They gave it away by saying the genuine cable was a 234 series (small basic UART) and not a 232 (big ol' 28-pin chip).
commandersaki•1h ago
Just to be clear suspicious in this sense is a cable that is likely counterfeit and wasn't able to do high speed transfer unlike the genuine known good one.
androng•29m ago
this is an advertisement for the company
gnabgib•18m ago
Related USB-C head-to-head comparison (389 points, 2023, 219 comments) https://news.ycombinator.com/item?id=37929338
ChrisMarshallNY•3m ago
To be fair, this story is basically an ad, but a pretty good one, and many featured HN stories are really marketing. Personally, I don’t mind marketing stuff, if it’s interesting and relevant (like this).

But the fact that most comms cables, these days, have integrated chips, makes for a dangerous trust landscape. That’s something that we’ve known for quite some time.

BTW: I “got it right,” but not because of the checklist. I just knew that a single chip is likely a lot cheaper than a board with many components, and most counterfeits are about selling cheap shit, for premium prices.

But if it were a spy cable, it would probably look almost identical (and likely would have a considerably higher BOM).

userbinator•3m ago
After they infamously started going after clones, anything branded FTDI is automatically suspicious.

USB-serial adapters are not particularly special. Dozens of other manufacturers make them.

Adoption of EVs tied to real-world reductions in air pollution: study

https://keck.usc.edu/news/adoption-of-electric-vehicles-tied-to-real-world-reductions-in-air-poll...
84•hhs•2h ago•29 comments

BirdyChat becomes first European chat app that is interoperable with WhatsApp

https://www.birdy.chat/blog/first-to-interoperate-with-whatsapp
416•joooscha•7h ago•275 comments

Postmortem: Our first VLEO satellite mission (with imagery and flight data)

https://albedo.com/post/clarity-1-what-worked-and-where-we-go-next
129•topherhaddad•6h ago•47 comments

Two Weeks Until Tapeout

https://essenceia.github.io/projects/two_weeks_until_tapeout/
20•client4•1h ago•0 comments

We X-Rayed a Suspicious FTDI USB Cable

https://eclypsium.com/blog/xray-counterfeit-usb-cable/
70•aa_is_op•2h ago•21 comments

Raspberry Pi Drag Race: Pi 1 to Pi 5 – Performance Comparison

https://the-diy-life.com/raspberry-pi-drag-race-pi-1-to-pi-5-performance-comparison/
131•verginer•8h ago•70 comments

Claude Code's new hidden feature: Swarms

https://twitter.com/NicerInPerson/status/2014989679796347375
312•AffableSpatula•12h ago•229 comments

Draig, a Welsh Programming Language

https://raku.land/zef:l10n/L10N::CY
8•librasteve•2d ago•6 comments

High-bandwidth flash progress and future

https://blocksandfiles.com/2026/01/19/a-window-into-hbf-progress/
15•tanelpoder•4d ago•4 comments

Memory layout in Zig with formulas

https://raymondtana.github.io/math/programming/2026/01/23/zig-alignment-and-sizing.html
82•raymondtana•10h ago•22 comments

How I estimate work

https://www.seangoedecke.com/how-i-estimate-work/
416•mattjhall•16h ago•253 comments

Agent orchestration for the timid

https://substack.com/inbox/post/185649875
75•markferree•7h ago•19 comments

Poland's energy grid was targeted by never-before-seen wiper malware

https://arstechnica.com/security/2026/01/wiper-malware-targeted-poland-energy-grid-but-failed-to-...
148•Bender•5h ago•41 comments

I added a Bluesky comment section to my blog

https://micahcantor.com/blog/bluesky-comment-section.html
215•hydroxideOH-•6h ago•77 comments

Small Kafka: Tansu and SQLite on a free t3.micro

https://blog.tansu.io/articles/broker-aws-free-tier
59•rmoff•4d ago•5 comments

Typography on Pencils (2023)

https://www.presentandcorrect.com/blogs/blog/typography-on-pencils-1-5
12•NaOH•4d ago•0 comments

Ask HN: Gmail spam filtering suddenly marking everything as spam?

137•goopthink•10h ago•94 comments

First Design Engineer Hire – Build Games at Gym Class (YC W22)

https://www.ycombinator.com/companies/gym-class-by-irl-studios/jobs/ywXHGBv-design-engineer-senio...
1•hackerews•5h ago

Shared Claude: A website controlled by the public

https://sharedclaude.com/
46•reasonableklout•18h ago•18 comments

Maze Algorithms (2017)

http://www.jamisbuck.org/mazes/
98•surprisetalk•1d ago•26 comments

Understanding Rust Closures

https://antoine.vandecreme.net/blog/rust-closures/
37•avandecreme•8h ago•15 comments

Europe wants to end its dangerous reliance on US internet technology

https://theconversation.com/europe-wants-to-end-its-dangerous-reliance-on-us-internet-technology-...
159•DyslexicAtheist•3h ago•124 comments

Show HN: StormWatch – Weather emergency dashboard with prep checklists

https://jeisey.github.io/stormwatch/
28•lotusxblack•7h ago•6 comments

The Kept and the Killed (2022)

https://publicdomainreview.org/essay/the-kept-and-the-killed/
32•nomagicbullet•11h ago•3 comments

MS confirms it will give the FBI your Windows PC data encryption key if asked

https://www.windowscentral.com/microsoft/windows-11/microsoft-bitlocker-encryption-keys-give-fbi-...
455•blacktulip•13h ago•283 comments

JSON-render: LLM-based JSON-to-UI tool

https://json-render.dev/
58•rickcarlino•7h ago•14 comments

Civil Resistance

https://en.wikipedia.org/wiki/Civil_resistance
3•riffic•5m ago•0 comments

Show HN: Open-source Figma design to code

https://github.com/vibeflowing-inc/vibe_figma
33•alepeak•20h ago•8 comments

KAOS – The Kubernetes Agent Orchestration System

https://github.com/axsaucedo/kaos
14•axsaucedo•4d ago•4 comments

Doing gigabit Ethernet over my British phone wires

https://thehftguy.com/2026/01/22/doing-gigabit-ethernet-over-my-british-phone-wires/
429•user5994461•16h ago•245 comments