New Technology : Security – Government
Share This article
With a chilling hint of the not-so-distant future, researchers at the Usenix Security conference have demonstrated a zero-day vulnerability in your brain. Using a commercial off-the-shelf brain-computer interface, the researchers have shown that it’s possible to hack your brain, forcing you to reveal information that you’d rather keep secret.
As we’ve covered in the past, a brain-computer interface is a two-part device: There’s the hardware — which is usually a headset (an EEG; an electroencephalograph) with sensors that rest on your scalp — and software, which processes your brain activity and tries to work out what you’re trying to do (turn left, double click, open box, etc.) BCIs are generally used in a medical setting with very expensive equipment, but in the last few years cheaper, commercial offerings have emerged. For $200-300, you can buy an Emotiv (pictured above) or Neurosky BCI, go through a short training process, and begin mind controlling your computer.
Both of these commercial BCIs have an API — an interface that allows developers to use the BCI’s output in their own programs. In this case, the security researchers — from the Universities of Oxford and Geneva, and the University of California, Berkeley — created a custom program that was specially designed with the sole purpose of finding out sensitive data, such as the location of your home, your debit card PIN, which bank you use, and your date of birth. The researchers tried out their program on 28 participants (who were cooperative and didn’t know that they were being brain-hacked), and in general the experiments had a 10 to 40% chance of success of obtaining useful information (pictured above).
After more than four years of research, DARPA has created a system that successfully combines soldiers, EEG brainwave scanners, 120-megapixel cameras, and multiple computers running cognitive visual processing algorithms into a cybernetic hivemind. Called the Cognitive Technology Threat Warning System (CT2WS), it will be used in a combat setting to significantly improve the US Army’s threat detection capabilities.
There are two discrete parts to the system: The 120-megapixel camera, which is tripod-mounted and looks over the battlefield (pictured below); and the computer system, where a soldier sits in front of a computer monitor with an EEG strapped to his head (pictured above). Images from the camera are fed into the computer system, which runs cognitive visual processing algorithms to detect possible threats (enemy combatants, sniper nests, IEDs). These possible threats are then shown to a soldier whose brain then works out if they’re real threats — or a false alarm (a tree branch, a shadow thrown by an overheard bird).
The soldier is linked into the computer system via an EEG (electroencephalogram) brain-computer interface that continually scans his brains for P300 responses. As we’ve discussed previously (see: Hackers backdoor the human brain), a P300 response is triggered when your brain recognizes something important. This might be a face of someone you know or the glint of a sniper scope — it doesn’t matter. P300 responses are very reliable and can even be triggered subconsciously.
- Hackers Backdoor the Human Brain, Successfully Extract Sensitive Data (zen-haven.dk)
- Hacking the human brain now a reality (hangthebankers.com)
- Inception in Real Life: Scientists Figure Out How To Hack The Human Brain (techie-buzz.com)
- Headset EEG hacking gives new meaning to PINheads (phys.org)
- Sensitive data in human brain successfully extract by Hackers (sott.net)
- Adversarial mind-reading with compromised brain-computer interfaces (boingboing.net)
- Scientists start hacking minds with cheap EEG gear (news.cnet.com)
- Hacking the brain for fun and profit (mindhacks.com)
- Hackers backdoor the human brain, successfully extract sensitive data (stratrisks.com)
- How future criminals could hack your brain and steal your PIN – The Week (nadernazemi.com)