- Researchers claim to have found a way to convert a Lenovo webcam into a Badusb device
- Badusb is a firmware vulnerability that converts a USB stick into a malware writing weapon
- Lenovo launched a firmware update, so users should patch now
The webcam of your device can be reprogrammed to become against you and serve as a rear door for a threat actor, experts warned.
Eclypsium security researchers affirm that certain Lenovo webcam models promoted by Linux can become the so -called “Badusb” devices.
The error is now tracked as CVE-2025-4371. It still does not have a gravity score, but it has a nickname: Badcam.
Signed of reflection
Approximately a decade ago, the researchers found a way to reprogram the firmware of a USB device to act maliciously, allowing it to imitate keyboards, network cards or other devices. This allows you to execute commands, install malware or steal data, and the greatest advantage compared to traditional malware is that you can successfully avoid traditional security measures.
The vulnerability was called “Badusb”, and was seen abused in nature, when the threat actors end7 began to send USB units based on US organizations. At one point, the FBI even began to warn people who do not connect USB devices found in office baths, airports or the one received in the mailbox.
Now, Eclypsium says the same can be done with certain USB web cameras, built by Lenovo and fed by Linux.
“This allows remote attackers to inject covert keys and launch attacks regardless of the host operating system,” Eclypsium said The hacker news.
“An attacker who wins the execution of the remote code in a system can reflect the firmware of a webcam with Motor Linux, reusing it to behave as a malicious hyd or to emulate additional USB devices,” the researchers explained.
“Once armed, the seemingly harmless webcam can inject keys of keys, offer malicious useful loads or serve as a point of support for a deeper persistence, everything while maintaining the external appearance and central functionality of a standard chamber.
Obtaining remote access to a webcam requires that the device be compromised first, in which case the attackers can do what they want anyway. However, users must be careful not to connect other people’s webchers, or buy these products of murky internet stores.
It was said that the FHD web cameras of Lenovo 510 FHD and Lenovo Performance FHD were vulnerable, and a 4.8.0 version of firmware update to mitigate the threat was launched.
