Overclock.net › Forums › Industry News › Technology and Science News › [Forbes] Researchers Say They Can Hack Your iPhone With A Malicious Charger
New Posts  All Forums:Forum Nav:

[Forbes] Researchers Say They Can Hack Your iPhone With A Malicious Charger - Page 2

post #11 of 20
Quote:
Originally Posted by DuckieHo View Post

Any evidence that it is wild.... as in "it is in use" today?

The malware on the iPhone would have to utilize additional exploits to run on the PC though.

Indeed, but that is just a scenario that could possibly be brought into fruition. Since i lack the knowledge about how data is transferred from the infected iPhone to the PC, I'll just shut up and look pretty. biggrin.gif
post #12 of 20
Its actually not a charger, but a computer called Mactan (yeah Mactan), which probably runs on Linux and its hardware is something like that of Raspberry Pi but with ARM processor. The system is able to inject the malware in 1 minute. This hack is said to work on current gen devices, meaning through Lightening connector. Much details wont be revealed until Black Hat 2013 Conf. Hope it helps biggrin.gif
post #13 of 20
Quote:
Originally Posted by Amar View Post

Its actually not a charger, but a computer called Mactan (yeah Mactan), which probably runs on Linux and its hardware is something like that of Raspberry Pi but with ARM processor. The system is able to inject the malware in 1 minute. This hack is said to work on current gen devices, meaning through Lightening connector. Much details wont be revealed until Black Hat 2013 Conf. Hope it helps biggrin.gif

So a consumer purchasing a charger for cheap is fooled into using it, then getting his/her iPhone infected? Do you know what would happen if the consumer unplugged the 'fake charger' before that minute? Would it continue where it left off, or restart its process of infecting the device?
post #14 of 20
"The devices’ combined data and power port has been the most common point of entry for hackers seeking to jailbreak their devices to remove Apple’s default restrictions on their devices."

"Hackers" and "jailbreak" are very rhetorical terms... clearly this article is aimed at investors as opposed to the general population.

edit:
Quote:
Originally Posted by aznpersuazn View Post

So a consumer purchasing a charger for cheap more expensive is fooled into using it, then getting his/her iPhone infected? Do you know what would happen if the consumer unplugged the 'fake charger' before that minute? Would it continue where it left off, or restart its process of infecting the device?

is what you meant to say I think.
Edited by un-midas touch - 6/3/13 at 8:36am
The Mad Cow
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Gigabyte H61M-S2H HIS Radeon HD 6670 Kingston 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 ... 
Hard DriveOptical DriveCoolingOS
Western Digital Caviar Blue Samsung/Hitachi something or other assortment of leftovers from old systems hot-gl... Xubuntu 15.04 
MonitorKeyboardPowerCase
Sony whatevs Logitech K400 Thermaltake Smart650 Hand-me-down Gateway case 
MouseMouse PadAudioOther
Can you believe I got it at a gas station? worth more than the software it came with. Sup... JVC XX in-ears Logitech f310 
  hide details  
Reply
The Mad Cow
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Gigabyte H61M-S2H HIS Radeon HD 6670 Kingston 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 ... 
Hard DriveOptical DriveCoolingOS
Western Digital Caviar Blue Samsung/Hitachi something or other assortment of leftovers from old systems hot-gl... Xubuntu 15.04 
MonitorKeyboardPowerCase
Sony whatevs Logitech K400 Thermaltake Smart650 Hand-me-down Gateway case 
MouseMouse PadAudioOther
Can you believe I got it at a gas station? worth more than the software it came with. Sup... JVC XX in-ears Logitech f310 
  hide details  
Reply
post #15 of 20
Quote:
Originally Posted by aznpersuazn View Post

So a consumer purchasing a charger for cheap is fooled into using it, then getting his/her iPhone infected? Do you know what would happen if the consumer unplugged the 'fake charger' before that minute? Would it continue where it left off, or restart its process of infecting the device?

This vector is not realistic for mass attacks.... the chargers would basically need computers placed in them and this costs money. There are MUCH easier, cheaper, faster, and safer ways to attack system.


Does it matter? As long as they charge for at least 1 min (which is everyone), then they can be infected.


If you're worried, you can build an adapter that only exposes the power pins and not the data pins.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #16 of 20
Quote:
Originally Posted by DuckieHo View Post

This vector is not realistic for mass attacks.... the chargers would basically need computers placed in them and this costs money. There are MUCH easier, cheaper, faster, and safer ways to attack system.


Does it matter? As long as they charge for at least 1 min (which is everyone), then they can be infected.


If you're worried, you can build an adapter that only exposes the power pins and not the data pins.

And to that, I say thank you for enlightening me about DIY chargers and the ability to expose only the power pins!
post #17 of 20
Quote:
Originally Posted by DuckieHo View Post

If you're worried, you can build an adapter that only exposes the power pins and not the data pins.

Maybe nail poish... tape... a pair of pliers... really only if you're worried though.
The Mad Cow
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Gigabyte H61M-S2H HIS Radeon HD 6670 Kingston 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 ... 
Hard DriveOptical DriveCoolingOS
Western Digital Caviar Blue Samsung/Hitachi something or other assortment of leftovers from old systems hot-gl... Xubuntu 15.04 
MonitorKeyboardPowerCase
Sony whatevs Logitech K400 Thermaltake Smart650 Hand-me-down Gateway case 
MouseMouse PadAudioOther
Can you believe I got it at a gas station? worth more than the software it came with. Sup... JVC XX in-ears Logitech f310 
  hide details  
Reply
The Mad Cow
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Gigabyte H61M-S2H HIS Radeon HD 6670 Kingston 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 ... 
Hard DriveOptical DriveCoolingOS
Western Digital Caviar Blue Samsung/Hitachi something or other assortment of leftovers from old systems hot-gl... Xubuntu 15.04 
MonitorKeyboardPowerCase
Sony whatevs Logitech K400 Thermaltake Smart650 Hand-me-down Gateway case 
MouseMouse PadAudioOther
Can you believe I got it at a gas station? worth more than the software it came with. Sup... JVC XX in-ears Logitech f310 
  hide details  
Reply
post #18 of 20
Quote:
Originally Posted by un-midas touch View Post

Maybe nail poish... tape... a pair of pliers... really only if you're worried though.

I was thinking of ways not to damage the cord since it can be used for data.... but you're right, you can cover the pins on the charge as well.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #19 of 20
As is the case with most sensitive digital data, if they get physical access to it, you're hosed anyway.
Heisenberg
(10 items)
 
Redemption
(18 items)
 
 
CPUGraphicsRAMHard Drive
Intel Core 2 Extreme @ 2.8GHz (upgrade) Intel GMA 950 2 x 2 DDR2 667MHz (upgrade) 120GB Mushkin ECO2 
Optical DriveOSMonitorPower
Replaced with 42 W/hr aux battery Mint 17.3 1280x800 Dell 65w Dell Adapter 
CaseOther
Latitude D630 Chassis Intel 7260-802.11ac 2x2 
CPUMotherboardGraphicsRAM
Not telling AsRock something Pixel Pusher 2 x 8 GB AMD Radeon RAM @ 1600mhz (All the VM's) 
Hard DriveHard DriveHard DriveOptical Drive
Crucial M4 128GB (8 second boot) Western Digital RE4 1TB Western Digital RE4 2TB Pioneer Blu-Ray Reader/Writer 
CoolingOSMonitorKeyboard
Cooler Master Hyper 212 Evo Windows 8.1 Pro x64 Dell U2713HM IBM Model M (CLICKY!!) 
PowerCaseMouseAudio
Antec HCG-900 NZXT Source 210 (it was cheap) Logitech G502 Schiit Modi 
AudioAudio
Sennheiser HD 598 M-Audio AV40's 
CPUMotherboardGraphicsRAM
Intel Core i5-4200U Microsoft BGA1168 Intel HD 4400 8 GB LPDDR3 Dual Channel @ 1600mhz 
Hard DriveOSMonitorKeyboard
SK Hynix 256GB SSD Windows 8.1 Professional 1920 x 1080p IPS Display Microsoft Touch Cover 2 
Power
48w PSU 
  hide details  
Reply
Heisenberg
(10 items)
 
Redemption
(18 items)
 
 
CPUGraphicsRAMHard Drive
Intel Core 2 Extreme @ 2.8GHz (upgrade) Intel GMA 950 2 x 2 DDR2 667MHz (upgrade) 120GB Mushkin ECO2 
Optical DriveOSMonitorPower
Replaced with 42 W/hr aux battery Mint 17.3 1280x800 Dell 65w Dell Adapter 
CaseOther
Latitude D630 Chassis Intel 7260-802.11ac 2x2 
CPUMotherboardGraphicsRAM
Not telling AsRock something Pixel Pusher 2 x 8 GB AMD Radeon RAM @ 1600mhz (All the VM's) 
Hard DriveHard DriveHard DriveOptical Drive
Crucial M4 128GB (8 second boot) Western Digital RE4 1TB Western Digital RE4 2TB Pioneer Blu-Ray Reader/Writer 
CoolingOSMonitorKeyboard
Cooler Master Hyper 212 Evo Windows 8.1 Pro x64 Dell U2713HM IBM Model M (CLICKY!!) 
PowerCaseMouseAudio
Antec HCG-900 NZXT Source 210 (it was cheap) Logitech G502 Schiit Modi 
AudioAudio
Sennheiser HD 598 M-Audio AV40's 
CPUMotherboardGraphicsRAM
Intel Core i5-4200U Microsoft BGA1168 Intel HD 4400 8 GB LPDDR3 Dual Channel @ 1600mhz 
Hard DriveOSMonitorKeyboard
SK Hynix 256GB SSD Windows 8.1 Professional 1920 x 1080p IPS Display Microsoft Touch Cover 2 
Power
48w PSU 
  hide details  
Reply
post #20 of 20
You know, we can all trivialize this as much as we want, my guess is Apple will take it seriously if it can teach them how to stop somebody somewhere from unlocking the phone (don't say "jailbreak," it's derogatory).
The Mad Cow
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Gigabyte H61M-S2H HIS Radeon HD 6670 Kingston 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 ... 
Hard DriveOptical DriveCoolingOS
Western Digital Caviar Blue Samsung/Hitachi something or other assortment of leftovers from old systems hot-gl... Xubuntu 15.04 
MonitorKeyboardPowerCase
Sony whatevs Logitech K400 Thermaltake Smart650 Hand-me-down Gateway case 
MouseMouse PadAudioOther
Can you believe I got it at a gas station? worth more than the software it came with. Sup... JVC XX in-ears Logitech f310 
  hide details  
Reply
The Mad Cow
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Gigabyte H61M-S2H HIS Radeon HD 6670 Kingston 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 ... 
Hard DriveOptical DriveCoolingOS
Western Digital Caviar Blue Samsung/Hitachi something or other assortment of leftovers from old systems hot-gl... Xubuntu 15.04 
MonitorKeyboardPowerCase
Sony whatevs Logitech K400 Thermaltake Smart650 Hand-me-down Gateway case 
MouseMouse PadAudioOther
Can you believe I got it at a gas station? worth more than the software it came with. Sup... JVC XX in-ears Logitech f310 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Technology and Science News
Overclock.net › Forums › Industry News › Technology and Science News › [Forbes] Researchers Say They Can Hack Your iPhone With A Malicious Charger