“Juice Jacking” Returns to the News but Still Hasn’t Happened

ByEmily Dolloff

Much has been made in the media about a recent FBI warning about “juice jacking,” the theoretical act of installing malware on or stealing data from an iPhone connected to a public charging station. Researchers first demonstrated juice jacking in 2011 at the Defcon security conference.

There’s no harm in following the FBI’s advice, but why raise the topic now? When questioned by the fact-checking site Snopes, the Denver office of the FBI said it was a standard public-service announcement tweet.

More importantly, there’s no indication that there’s any reason to worry. The security site Krebs On Security quoted one of the original juice jacking researchers as saying that he isn’t aware of any public accounts of a juice jacking kiosk existing in a public place outside of a security conference.

Making the risk of juice jacking even less concerning are security changes that Apple has made to iOS and iPadOS. Now, when you connect a device to a USB charger or device that does anything beyond providing power, you’ll see a prompt asking if you trust it. Given that there are no documented instances of juice jacking outside of a demonstration, it’s highly improbable that you’d get such a prompt when connecting to a public charging station, but if that were to happen, tap Don’t Trust and unplug your device immediately.

To block all possibility of juice jacking, you could:

  • Bring your own USB charger and plug it into a standard wall outlet.
  • Charge your iPhone from a battery pack and recharge the battery from a public charger.
  • Use a public wireless Qi charger. No cables, no worries.
  • Connect a USB data blocker to the end of your charging cable when using a public charger.
  • Rely on a special USB cable that can only charge, not carry data.

But honestly, just as with warnings about poisoned Halloween candy, these juice-jacking warnings don’t seem to be based on any documented instances. Our take? It’s sensible to bring a USB charger when traveling and carry a battery pack as a backup, but there’s no reason to worry about security when using a public charger. Amusingly, while we were editing this article, Ars Technica published a lengthy piece expanding on everything we’ve just said.

(Featured image by iStock.com/ClaireLucia)

Social Media: Juice jacking—malware installation or data theft after you plug a phone into a public charger—is in the news again. While the recommended precautions aren’t onerous, there are no documented instances of juice jacking happening in the wild.

Similar Posts

  • Motorcycling down here is sort of boring. I have my bike all tuned up but there is literally only one road and the fastest speed limit in Key West is 30mph. I think we may have to trade in Grace’s Vespa to get a real motorcycle for her so we can take some longer trips down here.

    Pitchers and catchers reported for spring training and the Cubs Kyle Schwarber is already breaking windshields in Arizona at the Cubs park. Maybe this year?

    Thank you so much for reading this issue of Kibbles & Bytes!

    Your Kibbles & Bytes Team,

    _Don, Emily, & Hadley_

  • _Dear Friends,_

    The trip up the the Everglades was pretty uneventful although we did see alligators and eagles as we were watching nature go by. Grace wants to go back up for an airboat ride so we will have to put that on the list.

    I am very happy to report that Small Dog Electronics now offers Go-Pro cameras and accessories. It took us many tries but I was able to meet with someone that could make a decision at CES in Las Vegas so we are now all set and Go-Pro should be in all of our stores. We’ll feature skiing and motorcycling kits up in the Green Mountains and some surf-oriented bundles down in Key West.

    I guess this should be in a soapbox but I just want to make a quick statement that I feel that Tim Cook and Apple are 100% correct in resisting the government’s attempt to force them to create software to defeat the encryption inherent in the iPhone. One of Apple’s most valuable commodities is safety. You know when you buy an Apple product that your data is safe. Safe from most viruses, malware, ransomware and also that your private data remains just that…private. While I certainly sympathize with those investigating the horrible San Bernadino terrorist actions, I do not feel that we should pay an even higher price and sacrifice our liberty and privacy as a result. Bravo to Tim Cook and Apple.

    This week’s Kibbles & Bytes exclusive is the “**Tempus Pro Weather Station.**”:http://www.smalldog.com/wag900002092 This complete wireless weather station has been one of out best selling devices. It combines an indoor monitoring station with an outdoor instrument and an iPhone or iPad App to give you complete weather information. It includes sensors for indoor and outdoor temperature, humidity, barometric pressure, rainfall and wind speed. It is simple to install and works by Bluetooth between the outdoor and indoor sensor and Wi-Fi to your iPhone. This is normally $159.99 but for this week for Kibbles & Bytes readers it is “**$25 off at $134.99!**”:http://www.smalldog.com/wag900002092