You are viewing a single thread.
View all comments View context
6 points

Yes, since most modern chargers and cables have internal chips to communicate capabilities with for things like fast-charging. It is not difficult to have the chip identify itself as something else, and execute a payload.

A common attack method is to have it show up as a keyboard, and execute a series of key-sequences when connected to a computer (like opening and executing things through a command prompt).

It is also why you should try and avoid plugging random USB cables/chargers into your phone/computer when out and about, since you don’t exactly know if the other end is what it appears to be.

permalink
report
parent
reply
2 points

I don’t know enough about the charger thing to comment on how viable that might be for an attack vector.

But you’re definitely right about plugging your mobile device into random ports. Either set your phone to by default only charge and not communicate, use a charge-only cable, or only use your own power bank/charger when away from home and you don’t fully trust where you are…

permalink
report
parent
reply

Curated Tumblr

!curatedtumblr@sh.itjust.works

Create post

For preserving the least toxic and most culturally relevant Tumblr heritage posts.

Image descriptions and plain text captions of written content are expected of all screenshots. Here are some image text extractors (I looked these up quick and will gladly take FOSS recommendations):

-web

-iOS

-android

Please begin copied raw text posts (lacking a screenshot that makes it apparent it is from Tumblr) with:

# This has been reposted here to Lemmy as part of the “Curated Tumblr Project.”

I made the icon using multiple creative commons svg resources, the banner is this.

Community stats

  • 2.7K

    Monthly active users

  • 307

    Posts

  • 6.5K

    Comments

Community moderators