Built-in Keylogger Found in MantisTek GK2 Keyboards—Sends Data to China by Swati Khandelwal.
From the post:
…
The popular 104-key Mantistek GK2 Mechanical Gaming Keyboard that costs around €49.66 has allegedly been caught silently recording everything you type on your keyboard and sending them to a server maintained by the Alibaba Group.
…
Serious keylogging requires more stealth than Khandelwal reports but the idea is a good one.
When renting computers or a furnished office with computers, who is going to check all the systems for keyloggers?
Or if you sponsor a “contest” where the winner gets a new keyboard?
Or upgrades at a Fortune 100 or one of the top law firms includes new keyboards?
Or computers and keyboards are donated for use in public libraries?
Phishing is easier and cheaper than a built-in keylogger for a keyboard but don’t overlook hardware approaches for particularly tough cases.