How charging your phone can compromise your data using Juice Jacking attack More info: mobile-hacker.com/2024/04/04/how…
how not to mix Rubber Ducky mobile payloads 😀 picture courtesy of @JGamblin
@androidmalware2 Three questions: 1. Is USB debugging enabled? 2. Is the install from unknown sources option enabled? 3. Is the Connect as USB Device option enabled?
@androidmalware2 👀 Always Carry USB Male To USB Female Data Blocker Adaptor
@androidmalware2 If you hand me an unlocked phone, I can interact with it and install apps on it. I call it the handjacking (oh wait!). Someone pick up that red phone and alert the president!
@androidmalware2 Use cable which has only charging option no data transfer option, Moreover it will only work when you unlock the phone. You can charge phone in lock state or switch off with normal cable. As you can see in the video guys unlock his phone then phone start running script.
@androidmalware2 In practice will the user not notice their device performing multiple tasks on its own? Or can the flipper run these tasks in background as well?
@androidmalware2 Yes exactly. no free lunch ;) #CyberSecurityAwareness
@androidmalware2 This attack vector is entirely dependent on the user plugging in an already unlocked device ...
@androidmalware2 WTF, how IS posible to install a external APK without the unkown sources option enabled?
@androidmalware2 Are these payloads/poc's available anywhere for testing and creating awareness?
@androidmalware2 If unknown sources were already enabled would the script know to just click install or would it try and enable it if it's already enabled which would disable it. Great work though
@androidmalware2 that is an HID attack not juice jacking this is nothing new at all
@androidmalware2 LTT featured a device to stop this the other day - github.com/cecio/USBvalve Starts at about 8:15 in youtube.com/watch?v=8BxVi6…
@androidmalware2 And of course the flipper zero is not a requirement, a compromised charging station will use another device.
@androidmalware2 i’m not used to mobile hacking but can’t you just like… close the apps while it’s happening?