Sunday, December 22, 2024

Expert reveals why you should never share iPhone chargers

Must read

The ‘ordinary-looking’ chargers are rammed with malicous malware (Picture: NurPhoto)

Hackers are, it’s safe to say, an innovative bunch.

From having AI write emails that know a little too much about your life to using Google Maps screenshots of homes to scare people, scams are becoming increasingly sophisticated.

But a cybersecurity expert has revealed that crooks can even use jerry-rigged Apple iPhone chargers to nab your data.

Ryan Montgomery, who tests digital security flaws in company networks, cautioned against using cables that you haven’t bought yourself.

Speaking on Instagram, Ryan said that ‘ordinary-looking’ charging cables can ’cause havoc on your computer or phone.’

Hackers use cables loaded with malware in a type of scam known as ‘juice jacking’.

So, if innocently used to charge your phone through your laptop or computer, the malware infects devices and gives hackers an access pass to your data.

They can read and steal your data by capturing keystrokes, rummaging through passwords and even lock up the gadget altogether.

Demonstrating this, Ryan filmed himself plugging in a charger into a ‘new’ computer that wasn’t connected to a phone.

‘This is a fully functional cable, you can still charge a phone with it,’ he said. 

‘With this cable plugged in, I have full access to this computer.’

With just a press of a button, Ryan then used his phone to get ‘full access’ to the device, which he hacked to show a pop-up reading: ‘Protect your devices.’

Science | 14186375 I'm a hacker... here's why you should never share iPhone chargers GRABS https://www.instagram.com/reel/DBhNtWsSkm6/?igsh=cTkzMTgzcm5qajk5
Ryan Montgomery programmed the dodgy charger to forcibly display a message on the laptop (Picture: @0day/Instagram)

The dubious device is known as an ‘OMG cable’, described by maker Hak5 as ‘a hand made USB cable with an advanced implant hidden inside’.

The $179.99 (£142) wire isn’t designed to be used by tech-savvy scam artists but rather help cybersecurity teams who recreate real hacks to know how to fight against them, known as ‘Red Teams’.

As Hak5 adds: ‘These cables will allow you to test new detection opportunities for your defence teams. They are also extremely impactful tools for teaching and training.’

To view this video please enable JavaScript, and consider upgrading to a web
browser that
supports HTML5
video

Security experts say to keep yourself safe, people should not use USB cables found already plugged into charging stations or use a power outlet if possible.

USB charging ports are found everywhere these days, from hotels and airports to even trains and buses, giving scammers more opportunities.

Some experts caution against even using chargers given away by promoters, given that branding the wires is an easy and cheap feat.

Apple iPhone users, whose devices are especially vulnerable, should carry their own charging wires, only charge from an electrical outlet and use portable batteries bought at reputable retailers.

‘Never trust a cable that’s not yours and if you’re really concerned, get a data blocker,’ Ryan added.

A USB data blocker – also known as a USB ‘condom’ – acts as a barrier between cables and computers to prevent malware from sneaking in.

Get in touch with our news team by emailing us at webnews@metro.co.uk.

For more stories like this, check our news page.

Latest article