Photo from Flickr user goobimama under Creative Commons for Attribution.
Think the built-in webcam on Apple’s MacBook is on only when the light adjacent to the camera is lit? Think again.
Research from computer science professor Stephen Checkoway and graduate student Matthew Brocker, both of the Johns Hopkins University, shows how the camera on a MacBook or iMac can be activated even while the warning LED remains dark.
A new paper co-authored by Checkoway and Brocker — “iSeeYou: Disabling the MacBook Webcam Indicator LED” — explains how the camera can be operational while the light is not. The paper is the “first public confirmation” of how it’s possible to spy on unwary MacBook users, reports the Washington Post.
Apple MacBooks and iMacs released prior to 2008 had what Checkoway and Brocker identified as a “hardware interlock” that connected the camera and the warning light, ensuring that the computer owner would know when the camera was on.
But, as the Post reports, the JHU researchers were able to circumvent the interlock:
MacBooks are designed to prevent software running on the MacBook’s central processing unit (CPU) from activating its iSight camera without turning on the light. But researchers figured out how to reprogram the chip inside the camera, known as a micro-controller, to defeat this security feature. [In the paper], Brocker and Checkoway describe how to reprogram the iSight camera’s micro-controller to allow the camera and light to be activated independently. That allows the camera to be turned on while the light stays off.
Watch the camera be activated without the warning light going on: