Latest news with #juicejacking
Yahoo
5 days ago
- Yahoo
TSA issued an important warning to smartphone users: Packing one of these power banks can keep your data safe.
I spend a whole lot of time hanging out in airports. This is partially because I tend to err on the side of being overly cautious and will arrive several hours before my flight and then just sit at the gate and work for the interim. I make good use of what could be wasted time, but I often find myself needing all my devices charged before even officially embarking on my trip. It's tempting to use those power ports set up around the airports and at the gate – the ones that actually work, that is – but the TSA is warning to think twice before doing so. The TSA has issued a rather ominous phone charger warning for airline passengers, telling them not to use those airport public charging points. 'When you're at an airport, do not plug your phone directly into a USB port.' This is due to the ever-increasing risk of juice jacking, which is a way that hackers can steal your identity and hack your phone or install viruses, malware, and spyware by compromising those charging points. You think you are charging your phone, but you're actually putting yourself at serious risk. What can you do instead? According to the TSA's warning, bring your own power: saying 'bring your TSA-compliant power brick or battery pack and plug in there.' So, if you are stocking up on travel gear for your next trip, maybe the first thing you can invest in should be a power bank! Here's some great ones to try, all on sale right now on Amazon: Belkin
Forbes
31-07-2025
- Forbes
TSA Warning—Stop Using These Smartphone Chargers
Republished on July 31 with new guidance for Android and iPhone owners on the specific vulnerabilities for their devices following TSA's warning. It's holiday season. And as millions of travelers prepare to jet off from airports across the U.S. and beyond, the Transportation Security Administration's recent phone charger warning for airline passengers has suddenly been given some added urgency. The security agency has told airport travelers to 'bring your TSA-compliant power brick or battery pack and plug in there,' rather than use public charging points. 'When you're at an airport, do not plug your phone directly into a USB port.' This relates to so-called juice jacking, which along with the overhyped threat from public WiFi is guaranteed to irk cybersecurity professionals. But just as TSA's airport WiFi warning has been reinforced by the security industry, so it is now with charging. 'Public USB ports should never be treated as safe,' warns NordVPN's Adrianus Warmenhoven (via ZDNet), following its new report into the threat from choicejacking. This enhancement on juice jacking can bypass the protections in your smartphone to trick it into accepting a data cable connection when it shouldn't. Warmenhoven describes choicejacking as 'a dangerous evolution in public charging threats. With a single deceptive prompt, attackers can trick people into enabling data transfer, potentially exposing personal files and other sensitive data.' Per Hackread, 'the rise of choicejacking reinforces what cybersecurity experts have said for years: public USB ports should not be trusted. Even at airports, hotels, or cafés, a compromised charger could be waiting to hijack your device.' That's debatable. Most public charging warnings are met with a fair amount of cyber derision. It's a blunt force attack. You're only likely to be specifically targeted by a malicious charging point or cable if you're in a high risk vocation or location. But what choicejacking has done is shown how a phone can be tricked into thinking a physical connection is one thing — a keyboard for example, while in reality it's something else. And data can be stolen as a result. If you consider your risk profile to be high, this should be a consideration. Use your own charger and cable. And bear in mind that when your phone is unlocked while charging, it's more vulnerable to this attack — if juice jacking attacks really exist, of course. Meanwhile, Android Authority has issued guidance for Android and iPhone users, setting out the different risks for each platform. Again, subject to that reality check. Attacks on Android phones 'exploit permissions for peripherals,' the website explains, using Android's Open Accessory Protocol for accessories such as 'mice or keyboards. Attackers can then begin hijacking system input through ADB (or Android Debug Bridge), which can simulate user input and change the USB mode to allow data transfer. The attack then proceeds with a series of commands aimed at gaining complete control of the device and gaining key access for further control.' iOS is different. 'A rigged USB cable or charger can be used to trigger a connection event for a Bluetooth device. Although it may appear as a regular Bluetooth-based audio accessory to your iPhone, it could act as the machinery to secretly allow data transfer and gain access to specific files and photos. However, it cannot access the entire iOS system as it can on Android.'
Android Authority
30-07-2025
- Android Authority
PSA: New 'choicejacking' attacks can steal your Android or iPhone's data without your knowledge
Mishaal Rahman / Android Authority TL;DR Researchers have identified new methods to exploit backdoors into Android and iOS to steal data. 'Choicejacking' is an evolution of the infamous juice jacking technique and also uses a rigged USB charger or cable to initiate data theft on your mobile devices. Choicejacking uses a combination of techniques to bypass existing juice jacking protection while faking user input to enable permissions illicitly. Juice jacking is a decade-old technique where hackers can install spyware and gain access to your phone when you use a public charging point to juice up (hence, the name) the phone's battery. Over the years, Google and Apple have enforced restrictions that prevent data transfer, especially when your phone is locked. Although these measures have been believed to suffice, researchers recently discovered they may not be enough, primarily in the face of more sophisticated attacks. Researchers at TU Graz, Austria, recently identified a series of novel techniques that can bypass existing preventive restrictions and access data on anyone's iPhone or Android device using the USB port. They have named the new technique 'Choice-jacking,' a wordplay on the familiar technique of juice jacking. In the paper, researchers claim they were able to spoof user actions, such as actively switching from just charging to data transfer and allowing a prompt that enables an external system or device to access files and settings on your phone. The nature attack involves replicating user choices, which could have led to the naming. Like juice jacking, choicejacking uses malicious chargers to initiate attacks on the users' phones. Unlike connections to PCs, both Android and iOS allow direct access to wired accessories without explicit permission, which can be exploited for attacks. On Android, specifically, the attacks work by exploiting permissions for peripherals (via AOAP or Android Open Accessory Protocol), such as mice or keyboards. Attackers can then begin hijacking system input through ADB (or Android Debug Bridge), which can simulate user input and change the USB mode to allow data transfer. The attack then proceeds with a series of commands aimed at gaining complete control of the device and gaining key access for further control. On iOS, a rigged USB cable or charger can be used to trigger a connection event for a Bluetooth device. Although it may appear as a regular Bluetooth-based audio accessory to your iPhone, it could act as the machinery to secretly allow data transfer and gain access to specific files and photos. However, it cannot access the entire iOS system as it can on Android. The team says it tested these attacks on eight top phone brands, including Xiaomi, Samsung, Google, Apple, etc. It notified these brands, and six out of eight have already patched — or are in the process of patching — the vulnerability. Despite these fixes, the best defense against choicejacking would be to avoid using public chargers at all costs. If you're traveling or anticipate your phone's battery may not last through the duration that you are out, we suggest carrying your own solution. There are plenty of chargers or power banks that we recommend so you can avoid attacks like choicejacking and avoid getting malware on your phone, or worse, losing your personal data in the process. Other solutions, such as Android's Lockdown mode, could be your saviors, but you would need to activate it manually every time you charge your phone with an unknown charger. Follow
Daily Mail
21-07-2025
- Daily Mail
TSA issues urgent warning to all smartphone users over little-known method used to steal private data at airports
Many people would consider themselves to be nervous flyers. But a recent warning from the Transportation Security Administration (TSA) may be an indication that you need to be more worried about what happens before you even get on a plane. 'In this technology age, cybersecurity has never been more important,' the TSA wrote on a recent Facebook post. 'You've likely heard about things like email scams and social media scams (tip: don't accept that friend request from your buddy's "new" profile), but today we want to share our two best tips for staying cyber safe at airports while you're traveling.' Both of the tips involved safety with your smartphone. While we all typically glue ourselves to our phone once we're safely by our gate and waiting for a flight, it's possible that your mobile device might be behind your next cybersecurity attack. The TSA suggested that charging ports at the airport aren't always as trustworthy as you might have assumed. They warned against 'juice jacking,' which is when a charging port has been altered so that it can be used to transfer malware to or steal personal information from a phone. 'So, when you're at an airport do not plug your phone directly into a USB port,' the TSA wrote. 'Bring your TSA-compliant power brick or battery pack and plug in there.' The second warning involves WiFi. In terms of free internet, the TSA pretty much says to stay away entirely. 'Don't use free public WiFi, especially if you're planning to make any online purchases,' the entity posted. 'Do not ever enter any sensitive info while using unsecure WiFi.' Similar to juice jacking, some unsecure WiFi networks could be stealing your information - which includes your card information when you're trying to pay for something. So what if you need to get on the WiFi? The TSA suggested you disconnect from unknown networks, only enter encrypted sites, and stay away from downloads. You should also be weary of inputting any information of yourself aside from your email onto any sort of site. Though both charging points and WiFi are offered at airports, it might be safest to avoid them. By following the TSA's tips, the most dangerous thing to consider at the airport would be missing your flight.
The Sun
08-07-2025
- The Sun
The dangerous mistakes you're making before a holiday including what shoes NEVER to wear on a flight – from a travel pro
A TRAVEL whizz has warned holidaymakers to steer clear of airport charging stations and it's not just to avoid a dodgy socket. Pollyann Giffin, 40, says 'juice jacking', a sneaky form of hacking, could ruin more than just your holiday. 4 The scam sees hackers use public USB ports to access your phone, swipe your data or infect it with malware and you'd never know until it's too late. Pollyann, who's racked up over two decades of travel experience, shared her top travel tips with her 14,000 Instagram followers and the clip has already notched up more than 37,000 views. She said: 'I used to be a very anxious traveller and love to be prepared. 'I research a lot and I've also learned a lot through personal experiences- good and bad. 'As a teacher I love to help people learn and be prepared for their own travels. 'If they can learn from my mistakes and not have to make them themselves, great!' Here are Pollyann's top tips. She said: 'It's called juice jacking - a sneaky way hackers can access your data through public USB charging stations. 'Once connected, they can install malware or steal personal info without you even knowing.' BE CAREFUL WHAT YOU EAT AND DRINK Pollyann said: 'Avoid carbonated drinks mid-flight - lower cabin pressure makes gas expand, leading to bloating and discomfort. 'I'm jumping with joy' say Dublin Airport passengers as another new food spot 'officially lands' in Terminal One 'Also avoid gassy veggies like broccoli, cauliflower, cabbage, and Brussels sprouts before your flight. 'These fibre-rich foods ferment in your gut and produce gas, which expands even more at high altitudes thanks to cabin pressure. 'The result? Bloating, discomfort, and a not-so-fun flight. 'Opt for easy-to-digest snacks like bananas, white rice, or yogurt before boarding to keep your tummy happy and your flight comfortable.' APPROPRIATE FOOTWEAR The expert said: 'Don't wear sandals on the plane. 'And closed shoes protect your feet from germs, dropped items, and spills - plus, they're safer in emergencies.' BE COURTEOUS OF OTHER PEOPLE Pollyann warned: 'Be aware of your surroundings. 'Whether it be in the airport or in a new city, be aware of your volume, body and others who are trying to navigate in the same space.' DO NOT OVERPACK She said: 'Don't overpack your carry-on. 'If you can't lift it into the overhead bin yourself, it's too heavy - a bag that's too heavy puts you and others at risk and flight attendants are not required to help.' Holiday packing tips Jemma Solomon, aka The Label Lady has got 5 packing tips to help you get organised for your next holiday. 1. Write a list Think about all the essentials you need to take with you; suncream, medicine, a few games for the kids, beach towels, and write everything in one list, which you can tick off as you add it to your suitcase. Or for complete ease, try Google's AI app - Gemini - which will create a list for you and help you not over pack. 2. Involve your kids Jemma said: 'My girls are getting older, they're 11 and nine, and they enjoy helping to pack. So I send them a list, and say 'this is what you need' and they follow the list. 'And then I give them a rucksack each - and say to them 'you can have whatever you want in there as long as it's not liquid', and they can take that on the plane. And that's their 'home away from home' items.' 3. Try a hack or two She said: "I think they all work, but for different reasons - and you've just got to pick the right one for your trip. "Rolling your clothes is really good to stop your clothes from getting creases. And if you're trying to get a lot of items into your case, it's a space saver. 'Packing cubes are great - for example, I'm going on holiday with my three kids and we're all using the same suitcase for our clothes. "These handy compartments let you separate your clothes, toiletries and tech into designated cubes, maximising luggage space by keeping your items compressed and neatly stacked. "I love taking them abroad with the family and it means my kids can easily take charge of their own items once we've arrived." 4. Decant beauty products Do you really need to take full-size bottles of shampoo and conditioner with you? The beauty industry has evolved so much, you can now buy shampoo bars or sheets - which are much lighter and smaller. Or, if you'll be popping to the shops when you're abroad, consider buying some items when you arrive. 5. Get organised before you come home Jemma said: 'When you repack on holiday [before coming home], the trick is to separate clean from dirty clothes. 'Also pack it in some form of order - so lights, darks, colours for items that need washing, or if you wash your clothes by person in the household, piles for each person. "Then you can put it straight into the washing machine. Do it straight away, don't leave it." ENJOY EVERY MOMENT Finally the expert dropped her most crucial tip: 'Put the phone away sometimes. 'You don't need to document every moment - being present is what makes a trip special. 'Do at least one thing off the beaten path. 'Skip some Instagram suggested spots and find something that feels like your discovery.' With summer travel in full swing, Pollyann's tips are a handy reminder to stay smart and prepared and to fly safe this season. 4 4
