Likelihood: LOW
Impact: HIGH
Treatment: MITIGATE
Confidence: Moderate
Likelihood is low because TrojPix requires undetected physical proximity to within 208 meters of the target, deployment of custom malware capable of controlling pixel output on the air-gapped host, and a receiver positioned without triggering existing physical security controls — a multi-stage attack chain with no confirmed in-the-wild exploitation and throughput figures that remain unvalidated outside the lab; impact is high because successful exfiltration at 8.1 Mbps against a classified, critical infrastructure, or high-assurance environment would compromise the foundational architectural control (the air gap itself), potentially exposing mission-critical data, intellectual property, or operational technology configurations with significant operational, regulatory, and national-security consequences.
Treatment rationale: The air gap is a deliberate, compliance-mandated architectural control — avoidance is not operationally feasible, transfer does not address the physical vector, and acceptance is indefensible once throughput reaches operationally significant levels; mitigation through physical perimeter hardening, video output restrictions, and electromagnetic shielding directly reduces both the attack surface and the exfiltration channel.
Third-Party / Supply-Chain Risk
Shared facilities, co-location arrangements, or multi-tenant government and critical infrastructure campuses increase exposure materially — any scenario where an adversary can achieve passive receiver placement within 208 meters without detection (e.g., adjacent tenant space, shared building infrastructure, or a contractor with physical access) represents a supply-chain-adjacent physical access risk per NIST SP 800-161 third-party physical access controls; organizations relying on third-party facility management or shared SCIF-adjacent spaces should reassess physical proximity assumptions for their air-gapped enclaves.
Loss Exposure (illustrative)
Magnitude: High — illustrative $5M–$50M+ for a confirmed exfiltration event against a classified or critical infrastructure target, driven primarily by incident response, regulatory engagement, remediation of compromised programs or operational technology, and reputational/contractual consequences; lower-assurance environments illustratively $500K–$5M
Frequency: Illustrative annualized probability of a successful TrojPix-class attack against a single exposed organization: very low — estimated 1-in-200 to 1-in-500 per year, reflecting the high attacker capability required (custom implant, physical proximity, receiver deployment), absence of confirmed exploitation, and limited threat actor population currently capable of operationalizing this technique at scale
Annualized: Illustrative ALE: approximately $10K–$250K per year for a single high-value air-gapped enclave, derived from low frequency against high-magnitude loss; this range widens significantly if the threat actor profile includes nation-state actors with established physical access programs targeting the organization's sector
Basis: Loss magnitude anchored to the consequence of air-gap defeat in high-assurance environments — not data volume, but the value of what is protected and the cost to reconstitute compromised programs, respond to regulatory inquiries, and restore operational confidence; frequency anchored to multi-stage attack chain prerequisites, no KEV listing, no confirmed exploitation, and the specialized capability required; no third-party report figures cited — derivation is wholly internal to this threat's attack chain characteristics and target profile
Illustrative estimate — not actuarially derived.
Insurance / Contractual / Legal — Potential Obligations
Potential triggers, not legal determinations. Verify with counsel/broker before acting.
• Successful exfiltration from a classified or regulated environment may invoke breach-notification obligations under applicable national security or sector-specific regulatory frameworks — verify with counsel.
• If the air-gapped system processes data subject to contractual data-protection obligations (e.g., defense contracts, critical infrastructure agreements), confirmed exfiltration may constitute a material breach triggering notification or cure clauses — verify with counsel and contracting officer.
• Cyber-insurance policies covering data exfiltration losses may require timely notice of a confirmed incident; the novel physical-layer vector may raise coverage applicability questions — verify with broker.