{"id":8611,"date":"2023-05-01T16:03:04","date_gmt":"2023-05-01T20:03:04","guid":{"rendered":"https:\/\/tcn.tidbits.com\/?p=9800"},"modified":"2023-05-01T19:44:34","modified_gmt":"2023-05-01T23:44:34","slug":"juice-jacking-returns-to-the-news-but-still-hasnt-happened","status":"publish","type":"post","link":"https:\/\/www.macworks.com\/blog\/juice-jacking-returns-to-the-news-but-still-hasnt-happened\/","title":{"rendered":"\u201cJuice Jacking\u201d Returns to the News but Still Hasn\u2019t Happened"},"content":{"rendered":"<p>Much has been made in the media about a <a href=\"https:\/\/twitter.com\/FBIDenver\/status\/1643947117650538498\" target=\"_blank\" rel=\"noopener\">recent FBI warning<\/a> about \u201c<a href=\"https:\/\/en.wikipedia.org\/wiki\/Juice_jacking\" target=\"_blank\" rel=\"noopener\">juice jacking<\/a>,\u201d the theoretical act of installing malware on or stealing data from an iPhone connected to a public charging station. Researchers first demonstrated juice jacking in 2011 at the Defcon security conference.<\/p>\n<p><img decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-9802\" src=\"https:\/\/macworks.com\/blog\/wp-content\/uploads\/2023\/05\/juice-jacking-returns-to-the-news-but-still-hasnt-happened.png\" alt=\"\" width=\"479\" height=\"397\"><\/p>\n<p>There\u2019s no harm in following the FBI\u2019s advice, but why raise the topic now? When <a href=\"https:\/\/www.snopes.com\/fact-check\/serious-threat-of-juice-jacking\/\" target=\"_blank\" rel=\"noopener\">questioned by the fact-checking site Snopes<\/a>, the Denver office of the FBI said it was a standard public-service announcement tweet.<\/p>\n<p>More importantly, there\u2019s no indication that there\u2019s any reason to worry. The security site <a href=\"https:\/\/krebsonsecurity.com\/2023\/04\/why-is-juice-jacking-suddenly-back-in-the-news\/\" target=\"_blank\" rel=\"noopener\">Krebs On Security<\/a> quoted one of the original juice jacking researchers as saying that he isn\u2019t aware of any public accounts of a juice jacking kiosk existing in a public place outside of a security conference.<\/p>\n<p>Making the risk of juice jacking even less concerning are security changes that Apple has made to iOS and iPadOS. Now, when you connect a device to a USB charger or device that does anything beyond providing power, you\u2019ll see a prompt asking if you trust it. Given that there are no documented instances of juice jacking outside of a demonstration, it\u2019s highly improbable that you\u2019d get such a prompt when connecting to a public charging station, but if that were to happen, tap Don\u2019t Trust and unplug your device immediately.<\/p>\n<p><img decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-9803\" src=\"https:\/\/macworks.com\/blog\/wp-content\/uploads\/2023\/05\/juice-jacking-returns-to-the-news-but-still-hasnt-happened-1.png\" alt=\"\" width=\"311\" height=\"187\"><\/p>\n<p>To block all possibility of juice jacking, you could:<\/p>\n<ul>\n<li>Bring your own USB charger and plug it into a standard wall outlet.<\/li>\n<li>Charge your iPhone from a battery pack and recharge the battery from a public charger.<\/li>\n<li>Use a public wireless Qi charger. No cables, no worries.<\/li>\n<li>Connect a <a href=\"https:\/\/www.amazon.com\/s?k=PortaPow\" target=\"_blank\" rel=\"noopener\">USB data blocker<\/a> to the end of your charging cable when using a public charger.<\/li>\n<li>Rely on a special USB cable that can only charge, not carry data.<\/li>\n<\/ul>\n<p>But honestly, just as with warnings about <a href=\"https:\/\/www.snopes.com\/fact-check\/halloween-non-poisonings\/\" target=\"_blank\" rel=\"noopener\">poisoned Halloween candy<\/a>, these juice-jacking warnings don\u2019t seem to be based on any documented instances. Our take? It\u2019s sensible to bring a USB charger when traveling and carry a battery pack as a backup, but there\u2019s no reason to worry about security when using a public charger. Amusingly, while we were editing this article, Ars Technica published a <a href=\"https:\/\/arstechnica.com\/information-technology\/2023\/05\/fearmongering-over-public-charging-stations-needs-to-stop-heres-why\/\" target=\"_blank\" rel=\"noopener\">lengthy piece<\/a> expanding on everything we\u2019ve just said.<\/p>\n<p>(Featured image by iStock.com\/ClaireLucia)<\/p>\n<hr>\n<p>Social Media: Juice jacking\u2014malware installation or data theft after you plug a phone into a public charger\u2014is in the news again. While the recommended precautions aren\u2019t onerous, there are no documented instances of juice jacking happening in the wild.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Much has been made in the media about a recent FBI warning about \u201cjuice jacking,\u201d the theoretical act of installing malware on or stealing data from an iPhone connected to a public charging station. Researchers first demonstrated juice jacking in 2011 at the Defcon security conference. There\u2019s no harm in following the FBI\u2019s advice, but [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":8612,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9,69,106,880,8,112,185,104],"tags":[],"class_list":["post-8611","post","type-post","status-publish","format-standard","has-post-thumbnail","category-apple","category-apple-consulting-ct","category-apple-support-ct","category-ipad","category-iphone","category-mac-support-ct","category-mactech","category-security"],"_links":{"self":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts\/8611","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/comments?post=8611"}],"version-history":[{"count":1,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts\/8611\/revisions"}],"predecessor-version":[{"id":8618,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts\/8611\/revisions\/8618"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/media\/8612"}],"wp:attachment":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/media?parent=8611"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/categories?post=8611"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/tags?post=8611"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}