Yo everyone! I have questions about using cheap and generic mechanical keyboards. For example the Royal Kludge RK61 which has wired, Bluetooth and 2.4GHz connections. My host will be Linux machines. Do you see any security issues with using keyboards like that or were there any incidents of such devices being malicious?
Another concern might be the 2.4GHz USB that’s included. Assuming it’s not doing anything malicious is the connection encrypted or would you always instead use wired or Bluetooth? Thanks for any answers!
Wired is safer (if you trust the device), Bluetooth would be my next choice. But if someone really wants to know what you’re typing, they probably can with appropriate resources. There will be all sorts of vulnerabilities they can exploit to know what you’re up to. See the “Gloworm” attack for something interesting. As a private citizen there is more to life than being paranoid about such things. Nobody cares enough about you to listen into your keyboard’s Bluetooth connection! So any of those methods is probably fine.
Conversely if you’re into something that you think powerful, well resourced, motivated people may care about, then you shouldn’t be taking advice from strangers on the internet like me! Also don’t forget, if someone wants something e.g. your bank details, it’s easier to just hit you with a baseball bat until you tell them, then it is to set up a snooping operation.
relevant xkcd