Jordan Heerspring, the manager of Cert NZ’s threat and incident response team, recently cautioned people against using public USB charging ports to power their mobile devices and computers in an interview.
“If I’m being frank with you, I thought everyone already knew this. But in recent chats, I’ve had with loved ones, I’ve realised that many people are unaware of this fact. So that others are talking about it and becoming more aware of the problem is a source of relief for me.”
He expressed concern due to the widespread ignorance of the risks of using USB chargers in public places in New Zealand. The cyber security malware risk may affect users’ devices everywhere there are USB ports, including airports, hotels, and retail locations providing public charging stations.
It’s possible to locate public charging stations at most airports, and some hotels even have them available in their guests’ rooms. They can be found on some buses, particularly luxury models and flights. Therefore, keeping a safe distance from all of them is preferable if feasible. “You should be bringing your charging device, which you can plug into a wall socket,” he suggested.
Recently, the Federal Bureau of Investigation (FBI) sent a tweet warning the general people in the United States not to use these due to the possibility of being hacked. Additionally, it has warned New Zealanders about the perils of using power outlets in communal areas.
According to the FBI, “bad actors” have discovered a way to exploit these vulnerabilities to install malware and monitoring software on users’ devices by taking advantage of them. Unfortunately, according to Heerspring, this timeless piece of guidance is yet to be common knowledge among the public.
The FBI’s warning was most likely prompted by increased cyber-attacks directed at charging ports in the United States. Despite this, Heerspring was adamant that most of New Zealand’s ports were risk-free. The most effective course of action is to take preventative measures against these assaults, which do not occur frequently but are simple to avoid.
Heerspring warned that hackers had identified ways into the software and hardware that powered charging stations. These vulnerabilities could be used to put malicious software on customers’ devices or steal personal information.
“If they are exploiting that charging station, they can use either method to steal your personal or financial information,” he added. “They can use either method to steal your personal or financial information.”
If the infection is clever enough, the hacker won’t need to be in the same room as the charging port to access the data. It is the same as building a road leading right into the enemy stronghold’s centre. If you let them access, they can circumvent any gates or other physical barriers you have installed as security measures.
As a result, it can be challenging to determine if your mobile device has been compromised, but there are a few signs users should be on the lookout for. According to his reasoning, a few things are worth exploring further. One of these things is whether the phone is operating noticeably more slowly than it usually does. Another is whether the device is opening unexpected applications or windows.
According to the following information in the article, he also recommended that users never connect an unrecognised USB device to a mobile device or computer. Users shouldn’t insert any USB device, even a little USB key that they were given or that was given to them by an untrusted individual, into their laptops, phones, or other devices that they use at home.
Users should always use two-factor authentication on their accounts and practise excellent password hygiene. If you do these three things, in addition to keeping your devices updated with the most recent patches, you will be protected from most of the threats that are now in circulation.
