Skip to main content

Now you know Charging Phones In Public Is A Security Risk


Charging mobile devices using public sockets could be transmitting host of details, Kaspersky Lab warns
Mobile users have been warned that charging up their smartphones or tablets using public power sockets could expose their devices to criminals.


An investigation from Kaspersky Lab found that smartphones can even be compromised when charged using a standard USB connection connected to a computer.
Information including a device’s serial number, electronic chip ID and file system list can be revealed to third parties when such a service is used, meaning users could be unknowingly identified and even tracked.

At risk

image: http://www.techweekeurope.co.uk/wp-content/uploads/2016/05/shutterstock_137416073-600x400.jpg
charging phoneResearchers said both Android and iOS devices could be compromised when connected to a PC to charge, with the latter acting as an unwitting window into the user’s information.
Most of the data is transmitted during the handshake’ (a process of introduction between the device and the PC/Mac it is connected to), which can also include the device’s name, manufacturer and type.
In its investigation, the Kaspersky Lab team was able to show off the damaging effects a connection could bring, as they were able to re-flash a smartphone and silently install a root application on it, creating what they called “a total compromise” of the device.
“It is strange to see that nearly two years after the publication of a proof-of-concept demonstrating how a smartphone can be infected though the USB, the concept still works,” said Alexey Komarov, researcher at Kaspersky Lab.
“The security risks here are obvious: if you’re a regular user you can be tracked through your device IDs; your phone could be silently packed with anything from adware to ransomware; and, if you’re a decision-maker in a big company, you could easily become the target of professional hackers,.
“And you don’t even have to be highly-skilled in order to perform such attacks, all the information you need can easily be found on the Internet.”
The company is advising users to only trusted USB charging points and computers to charge a device, as well as setting up a password or fingerprint log-in using encryption technologies.

Comments

Post a Comment

Popular posts from this blog

Security Alert; Bart Ransomware Bypasses Corporate Firewalls

A new ransomware variant has emerged that’s similar to widespread threats such as Dridex 220 and Locky Affid=3, but uses a security-evading technique that may allow it to attack organisations protected from other malware, according to computer security researchers. Ransomware has spread quickly in the last few months, as a number of payouts have attracted cyber-criminals to the technique.
Post a Comment
Read more

Floods Leave Many Dead in Southern Ghana

Four days of heavy and steady rain has left at least 10 people dead in the south of Ghana. The streets of Accra have been left under water after the torrential downpours caused widespread flooding earlier this week. The nation's capital was hit bit 185mm of rain on Sunday, which is more than they would expect for the entire month of June. This is the wettest month of the year with an average rainfall of 178mm. Since the weekend a further 50mm of rain has fallen exacerbating the severe problems already faced. President John Dramani Mahama has surveyed the areas concerned. He was reported to have driven through several neighbourhoods on a motorcycle. Heavy downpours were also recorded 150km to the west of Accra in the Central Regional capital, Cape Coast where 10 people died in floods,  Sandy Amartey, regional coordinator of the National Disaster Management organisation, told AFP. "In all we have 10 to 12 who lost their lives during this rainy season." The rain...
Post a Comment
Read more

EC Slaps Apple With £11bn Irish Tax Bill

The European Commission (EC), as expected, has ordered the Irish government to recover up to €13 billion (£11bn) plus interest in “illegal tax benefits”. An investigation found Apple had been able to avoid taxation on almost all profits generated in the EU single market thanks to a structure which routed revenues through two “paper” headquarters in Ireland and minimal tax rates in the country. The EC says Apple only paid an effective corporate tax rate that fell from one percent in 2003 to 0.005 percent in 2014 – a rate which other companies in Ireland were not subjected to. This effectively amounted to state aid, the commission said. Apple tax amazon“Member States cannot give tax benefits to selected companies – this is illegal under EU state aid rules,” said Commissioner Margrethe Vestager, who is in charge of competition policy. “The Commission’s investigation concluded that Ireland granted illegal tax benefits to Apple, which enabled it to pay substantially less tax than ...
Post a Comment
Read more