A Janet Jackson song might crash some laptops back in the days of Windows XP. Microsoft software engineer Raymond Chen recounted the incident on Wednesday, claiming to have heard the story from a colleague in Windows XP product support. According to the blog post, Jackson’s 1989 hit song “Rhythm Nation” might disrupt a 5400 RPM laptop hard drive model used in various laptops.
Microsoft learned of the problem when a laptop maker informed the company’s Windows team regarding the mysterious flaw. Initially, the company thought it had something to do with the Rhythm Nation music video playing on laptops. But what made the problem even weirder was that the Rhythm Nation clip was also crashing Windows laptops owned by the manufacturer’s competitors.
Janet Jackson’s 1989 music video “Rhythm Nation” was recognized as a cybersecurity vulnerability following Microsoft reported it might crash old laptops.
A colleague of mine shared a story regarding Windows XP product support, said Raymond Chen. The story detailed how a major computer manufacturer discovered that playing Janet Jackson’s “Rhythm Nation” music video would crash certain laptop models.
Further investigation revealed that machines from several manufacturers also crashed. Sometimes playing the video on one laptop would crash another nearby laptop.
The investigation revealed that all of the failed laptops shared the same 5400 rpm hard drive.
It turns out the song contained one of the natural resonant frequencies for the 5400 RPM model of laptop hard drives they and other manufacturers were using,” Chen wrote.
The manufacturer that found the problem apparently added a custom filter into the audio pipeline to detect and remove the offending frequencies when playing audio. Of course, with modern machines, this problem is rather anecdotal. Moreover, almost nobody listens to Janet Jackson anymore (you do? Really?).
The risk of sound vibrations disturbing a hard drive is certainly surprising. But the problem has actually been known in computer circles for years. In his blog post, Chen linked to a video from 2008 regarding how shouting at storage drives in a data center can cause increased latency.
Sent by Raymond ChenThe Miter Corporation saw fit to list it on the Common Vulnerabilities and Exposures (CVE) Registry – the definitive list of cybersecurity vulnerabilities that we all need to be aware of.
It is listed as CVE-2022-38392 and has already been acknowledged by security vendor Tenable.
Although the bug looks comical, side channel attacks are a real threat. Israeli researcher Mordechai Guri has found ways to attack computers, including causing the memory to emit radiation in the same bands used by Wi-Fi and encoding information in these emissions.
Owners of laptops with old, slow hard drives should therefore be very careful if they hear Janet Jackson tunes while working – which is why we haven’t included a link to “Rhythm Nation” in this story (phew, saved!!!!).
Sources : Microsoft, Windows Dev Docs, CVE-2022-38392, Tenable
And you?
How do you read it?
Are you surprised to know that audio frequencies might crash computers?
do you listen to Janet Jackson?
Do you think this problem deserves to be recognized as a security vulnerability? Why ?
Have you ever listened to a song that causes a similar problem?
