Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Jon Bruner Profile picture
@JonBruner
Dec 4, 2024 15 tweets 6 min read Read on X
Scrolly
This looks like an ordinary USB-C connector, but when we CT scan it, we find something sinister inside…🧵
Last year we CT scanned a top-of-the-line Thunderbolt 4 connector and were astonished to find a 10-layer PCB with lots of active electronics. A lot of people saw the scan and wondered whether malicious electronics could be hidden in a tiny USB connector.
The answer is yes. This is an cable created by @_MG_, a security researcher and malicious hardware expert. It looks like an ordinary USB cable, but it can log keystrokes, inject malicious code, and communicate with an attacker via WiFi. Let’s see inside… O.MGThe O.MG cable has what looks like an ordinary USB-C connector
We put an OMG cable in our @lumafield Neptune CT scanner. It captures hundreds of X-ray images from different angles, then we reconstruct them into a 3D model that includes both external and internal features. (The color coding in the 3D model indicates relative density.)
For context, here’s a typical USB-C connector from Amazon Basics. It has a PCB, but no active electronics; the PCB is just used to connect the pins to the right wires in the cable.
Inside the ordinary-looking OMG connector we can immediately spot an antenna and a microprocessor. While high-end Thunderbolt connectors have some ICs, you won’t find an antenna like this in any normal USB connector. Amazon Basics USB-C connector compared to an O.MG USB-C connector with malicious electronics
On the other side of the connector is its most interesting feature: a USB passthrough module. When the malicious features of the OMG cable are deactivated, this passthrough links the connector’s pins directly to the cable without sending any signals through the microcontroller, effectively hiding its intent. When a hacker turns on the malicious features, this passthrough connects the microcontroller.
2D X-ray images can detect major deviations from an expected design, like the presence of an antenna and an IC, but it’s easy to slip other features past a simple 2D X-ray scan… Conventional 2-dimensional X-ray images of an O.MG USB-C connector
The microcontroller looks like an ordinary IC when we view it as a 2D X-ray image, but when we look at a 3D CT scan and adjust the visualization parameters, we can see another detail emerge: a second set of wire bonds, connected to a second die that’s stacked on top of the main processor. This hidden die could be an enormous security risk–and it’s completely hidden in an ordinary 2D X-ray image.
Complex, global supply chains carry enormous risks, as we were reminded during October’s supply chain attack in Lebanon–a story that @_MG_ has been thoughtfully following and analyzing since it happened.
Hidden explosives in electronics have been used before–for instance, in a USB thumb drive, which @_MG_ was able to reproduce. But as complex, active electronics make their way into corners of our lives that were previously dumb, the surface area for attacks becomes larger. And as devices become more complex, it’s harder to keep track of them during every stage of their manufacturing and distribution. x.com/_MG_/status/16…
I sat down with @_MG_ to talk about the O.MG cable and what it means for our devices–he’s a really impressive hardware security expert, and this is (in my biased opinion) well worth watching. youtube.com/watch?v=V7evSl…
We’ve also posted our scan of the O.MG cable here: lumafield.com/article/invest… so that you can explore it yourself in Voyager.
A lot of you are asking what should be done! At a personal level, buy reputable cables and avoid public USB ports like those charging stations at airports.
Most importantly we need vigilance throughout the supply chain. Manufacturers and retailers unwittingly distribute counterfeits all the time. Fortunately, we’re entering an era of ubiquitous, ultra-fast X-ray CT. This will help!lumafield.com/article/ultra-…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Jon Bruner

Jon Bruner Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @JonBruner

Jon Bruner Profile picture
Sep 24
We just CT scanned 1,000 lithium-ion batteries from 10 brands to see how they compare inside.

The differences we found are enormous, and point to serious safety risks in off-brand batteries that can easily make their way into the supply chain. Here’s what we saw… 🧵
Can you spot the differences between these two batteries? One is a legitimate Samsung cell; the other is a counterfeit. It’s marked with a Samsung-style part number and feels well-made. Two identical-looking lithium-ion 18650 cells, one made by Samsung and one by a counterfeiter
@Samsung But inside, these cells are completely different. Our @lumafield X-ray CT scans reveal that the Samsung cell has consistently high quality; its anode layers overhang the cathodes evenly. The counterfeit is a battery fire waiting to happen. Lumafield industrial X-ray CT scan cutaways of the insides of a Samsung 18650 lithium-ion battery cell and a counterfeit. The Samsung cell has uniform layer alignment and the counterfeit has poor layer alignment.
Lumafield industrial X-ray CT scan cutaways of the insides of a Samsung 18650 lithium-ion battery cell and a counterfeit. The Samsung cell has uniform layer alignment and the counterfeit has poor layer alignment.
Read 16 tweets
Jon Bruner Profile picture
Jul 21
Last month @AnkerOfficial recalled over one million power banks due to an unspecified battery manufacturing issue. We CT scanned 3 recalled power banks and 2 that weren’t recalled to see what’s going on inside. Here’s what we found…
Lithium-ion batteries must be manufactured to extremely tight tolerances. They’re made by winding thin films of positive electrode (cathode), negative electrode (anode), and separator into a tightly packed “jelly roll” that's sealed into a cylindrical can or rectangular pouch. Lumafield industrial X-ray CT scan of a cylindrical lithium-ion battery cell
Lumafield industrial X-ray CT scan of a LiPo pouch battery cell
If a contaminant is introduced during manufacturing or the film is wound unevenly, it can cause a short circuit between the layers. This can lead to rapid discharge, overheating, and potentially fire—making even small defects a serious safety risk. Lumafield industrial X-ray CT scan of a cylindrical lithium-ion battery showing negative anode-cathode overhang distance
Read 14 tweets
Jon Bruner Profile picture
Jan 30
Do water filters actually do anything? We CT scanned several popular water filters before and after use to see what they’re able to keep out of your body. Here’s what we found… 🧵
These are before-and-after @lumafield scans of a Brita water filter; it’s filled with a blend of activated carbon and ion-exchange resin and claims to trap chlorine, sediment, and heavy metals like lead. The filter medium swells with use, and it also gets denser. How do we know? Lumafield industrial X-ray CT scans of a Brita water filter cartridge, before and after use
Industrial CT scans capture both geometry and relative density. We start by taking hundreds of X-ray images from different angles, then reconstruct them into a 3D model that can be sectioned and analyzed. A dark area in a 2D X-ray image could be either thicker material or denser material; by rotating the object we’re scanning, we can separate geometry from density. In this @lumafield CT scan, density is visualized as a blue-red color map.
Read 13 tweets
Jon Bruner Profile picture
Oct 8, 2024
We just announced a major breakthrough in X-ray CT technology at @lumafield: scans that take hours with conventional CT will now take seconds. Here's why that's important 🧵
A CT scan is the richest possible source of industrial inspection data: it gives you a full 3D model of your part, inside and out, along with relative density information. But it's always been too slow for use in high-volume production environments—until now.
By bringing scan times down to as little as 0.1 seconds, we've overcome the major drawback of CT. Now it's a practical inspection technology for high-volume production. Comparison of various industrial inspection technologies, including visible light 3D scanning, contact metrology, ultrasonic inspection, AXI, and X-ray CT
Read 7 tweets
Jon Bruner Profile picture
Sep 25, 2024
Pens are made by the billion, require insane precision, and still work almost every time. We CT scanned a few common pen types to see what’s inside... 🧵 Lumafield industrial X-ray CT scans of a fountain pen, a ballpoint pen, and a rollerball pen
First up: a fountain pen 🖊️ These date back to the 10th century, but practical designs appeared in the 19th century. When the pen is tilted, gravity pulls ink from a cartridge to the nib. Capillary action pulls the ink through a slit in the nib, where it flows onto the page. Here are the 2D X-ray radiographs we captured of a fountain pen; we use software to reconstruct them into a 3D model (next tweet).
Here’s the 3D reconstruction of a retractable fountain pen—the Mahjohn A1. Our CT scan of the pen tip shows a spring loaded door that opens and closes to prevent the ink from drying out and to protect the nib.
Read 12 tweets
Jon Bruner Profile picture
Apr 9, 2024
We CT scanned an Apple Vision Pro! We also scanned two Meta headsets. Here’s what we found inside, and what it says about the two companies’ approach to AR/VR and to hardware development in general. 🧵
Here are our industrial CT scans of the Meta Quest Pro and Meta Quest 3 headsets. If you want to explore these scans, head to . Now let’s see what we found… lumafield.com/article/apple-…
Apple and Meta have taken different approaches to the market: the Vision Pro is a premium technology showcase for early adopters, while the Meta headsets are priced for accessibility in order to get as many people into the metaverse as possible. Comparison of Apple Vision Pro, Meta Quest Pro, and Meta Quest 3 headsets with Lumafield industrial X-ray CT scans
Read 23 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(