Skip to content
Tech News
← Back to articles

Can you get root with only a cigarette lighter? (2024)

2026-03-20 | original
read original more articles
Why This Matters

This article highlights how everyday tools, like a cigarette lighter, can be repurposed for hardware fault injection, a technique traditionally requiring expensive equipment. This raises concerns about the accessibility of hardware hacking, potentially enabling malicious actors to exploit devices with minimal resources, impacting both consumer security and the broader tech industry. It underscores the need for stronger hardware security measures to protect against low-cost, high-impact attacks.

Key Takeaways

By David Buchanan, 7th October 2024

Spoiler alert: Yes.

the elite hacking tool they don't want you to know you already own

Before you can write an exploit, you need a bug. When there are no bugs, we have to get creative—that's where Fault Injection comes in. Fault injection can take many forms, including software-controlled data corruption, power glitching, clock glitching, electromagnetic pulses, lasers, and more.

Hardware fault injection is something that typically requires specialized (and expensive) equipment. The costs stem from requiring a high degree of precision in terms of both when and where the fault is injected. There are many valiant attempts at bringing down the costs, with notable projects ranging from the RP2040-based PicoEMP, all the way to "Laser Fault Injection for The Masses". (The RP2040 crops up a lot due to its low cost combined with the "PIO" peripheral, which can do I/O with tight timings and latency)

A while back I read about using a piezo-electric BBQ Igniter coupled to an inductor as a low-budget tool for electro-magnetic fault injection (EMFI), and I was captivated. I wondered, how far can you take such a primitive tool? At the time, the best thing I could come up with was exploiting a software implementation of AES running on an Arduino, using DFA—it worked!

But I wasn't fully satisfied. I wanted to exploit something more "real," but I was out of ideas for the time being.

Fast forward to a couple of weeks ago, and the announcement of the Nintendo Switch 2 is on the horizon. We anticipate the Switch 2 will run largely the same system software as the Switch 1, and we're all out of software bugs. So, I was inspired to brush up on my hardware exploitation skills, and revisited my thoughts on low-budget EMFI.

Like any self-respecting hacker, I own a pile of junk laptops. I picked out a Samsung S3520, equipped with an Intel i3-2310M CPU and 1GB of DDR3 RAM. Manufactured in 2011, it's new enough that it can comfortably run a lightweight desktop Linux distro (I picked Arch), but crappy enough that I wasn't worried about bricking it.

My goal is to write a local-privilege-escalation exploit that works based on injected hardware faults.

... continue reading

Explore topics: fault injection electromagnetic pulses rp2040 laser fault injection aes
Related:
Show HN: Red Grid Link – peer-to-peer team tracking over Bluetooth, no servers
A Copy-Paste Bug That Broke PSpice AES-256 Encryption
Observation of self-bound droplets of ultracold dipolar molecules
Every Business Owner Needs This Password Manager for Just $24.97
Show HN: Ichinichi – One note per day, E2E encrypted, local-first

© 2026 GoKawiil

About | Editorial Policy | Contact