Seeing that I work at a bank I receive numerous memos about different social engineering type attacks and one in particular that I received caught my attention because of how different it was.
Most people have never heard of “Juice-Jacking” because it is a new hacking method used to steal digital data stored on mobile devices, and this happens right in public places.
This type of social engineering attack targets on-the-go users who plug their device into a public charging kiosk in places like airports, train station, hotels and shopping malls. This type of hacking was first introduced this year at DefCon, where they educated attendees about he potential perils of juicing up at random power stations.
They have been talking about how dangerous these charging stations could be because how most smartphones are configured to just connect and allow access to the data on the phone. Anyone who had an inclination to could put a system inside one of these kiosks that when someone connects their phone can steal all of the data off of it or even write malware to the device.
It is recommended to using a power cord, rather than a USB cable to charge your phone when outside your home or office since they do not transmit dat from the phone. If you only have a USB cable on you, turn off the phone before you charge it and some security experts also suggest to adjust the device settings to password protect the ability to transmit data.