Watch Out, Fanbois ! EVIL charger can inject Malware into your iPHONE
Researchers have made-up a hazardous new charger capable of attacking Apple’s iPhone with any malware they choose.
Eggheads from the GIT (Georgia Institute of Technology) argue to be able to hack an iPhone in under 60 seconds using a “malicious charger unit” called Mactans.The group claimed their results challenge the iPhone’s standing as an über-secure platform.
Billy Lau, Yeongjin Jang and Chengyu Song will unveil their evil plug charger at the Black Hat USA meeting, which starts at the end of July.Unfolding their discovery, the group said: “Apple iOS devices are said by many to be more sheltered than other mobile offerings. In evaluating this trust, we investigated the scope to which security threats were measured when performing basic activities such as charging a device. The results were disturbing.
“Despite the plethora of defense mechanisms in iOS, we successfully injected arbitrary software into current-generation Apple devices running the latest operating system software. All users are affected, as our way of approach requires neither a jail-broken device nor user interaction.”
iPhones come with sophisticated safety mechanisms to help avoid unauthorized software installing itself without authorization. The team said that “USB capabilities can be leveraged to sidestep these defense mechanisms” and then conceal the injected software, so it appears to be “hidden in the same way Apple hides it own built-in apps”.
They shaped Mactans using a Beagleboard, naming it after the Latin name for the Black Widow spider – Latrodectus mactan.
“This hardware was chosen to reveal the ease with which safe-looking, malicious USB chargers can be invented,” the team acclaimed.